NVD

Id
14563  
Name
CVE-2010-3145  
Description
Untrusted search path vulnerability in the BitLocker Drive Encryption API, as used in sdclt.exe in Backup Manager in Microsoft Windows Vista SP1 and SP2, allows local users to gain privileges via a Trojan horse fveapi.dll file in the current working directory, as demonstrated by a directory that contains a Windows Backup Catalog (.wbcat) file, aka "Backup Manager Insecure Library Loading Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-08-27  
Modified Date
2011-07-20  
Seq
2010-3145  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
80615 14563 CVE-2010-3145 oval:org.mitre.oval:def:12273  View
80616 14563 CVE-2010-3145 14751  View
80617 14563 CVE-2010-3145 MS11-001  View
80618 14563 CVE-2010-3145 1024948  View
80619 14563 CVE-2010-3145 TA11-011A  View
80620 14563 CVE-2010-3145 ADV-2011-0074  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
30778 JVNDB-2011-001017 Microsoft Windows Vista の sdclt.exe にて使用される BitLocker Drive Encryption API における権限昇格の脆弱性 Microsoft Windows Vista の Backup Manager 内にある sdclt.exe にて使用される BitLocker Drive Encryption API には、検索パスに関する処理に不備があるため、権限を取得される脆弱性が存在します。 CVE-2010-3145 45725 CVE-2010-3145 14563 9.3 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-001017.html 2011-01-11 2011-01-28 View