CVE-2010-5231Player vulnerability

2 documents2 sources
Severity
6.9MEDIUMNVD
EPSS
0.1%
top 82.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Divx Player
Timeline
PublishedSep 7
Latest updateMay 17

Description

Untrusted search path vulnerability in DivX Player 7.2.019 allows local users to gain privileges via a Trojan horse VersionCheckDLL.dll file in the current working directory, as demonstrated by a directory that contains a .avi file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages1 packages

NVDdivx/divx_player7.2.0.19

🔴Vulnerability Details

1
GHSA
GHSA-hm6m-ffwx-vqjx: Untrusted search path vulnerability in DivX Player 72022-05-17
CVE-2010-5231 — Divx Player vulnerability | cvebase