CVE-2010-5204

3 documents3 sources
Severity
6.9MEDIUM
EPSS
0.2%
top 62.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Lotus Symphony
Timeline
PublishedSep 6
Latest updateMay 17

Description

Multiple untrusted search path vulnerabilities in IBM Lotus Symphony 1.3.0 20090908.0900 allow local users to gain privileges via a Trojan horse (1) eclipse_1114.dll or (2) emser645mi.dll file in the current working directory, as demonstrated by a directory that contains a .odm, .odt, .otp, .stc, .stw, .sxg, or .sxw file. NOTE: some of these details are obtained from third party information.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages1 packages

NVDibm/lotus_symphony1.3.0.20090908.0900

🔴Vulnerability Details

2
GHSA
GHSA-qrj3-7cj9-qq29: Multiple untrusted search path vulnerabilities in IBM Lotus Symphony 12022-05-17
CVEList
CVE-2010-5204: Multiple untrusted search path vulnerabilities in IBM Lotus Symphony 12012-09-06
CVE-2010-5204 (MEDIUM CVSS 6.9) | Multiple untrusted search path vuln | cvebase.io