NVD

Id
8858  
Name
CVE-2011-1991  
Description
Multiple untrusted search path vulnerabilities in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allow local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .doc, .rtf, or .txt file, related to (1) deskpan.dll in the Display Panning CPL Extension, (2) EAPHost Authenticator Service, (3) Folder Redirection, (4) HyperTerminal, (5) the Japanese Input Method Editor (IME), and (6) Microsoft Management Console (MMC), aka "Windows Components Insecure Library Loading Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2011-09-15  
Modified Date
2012-06-04  
Seq
2011-1991  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
51044 8858 CVE-2011-1991 oval:org.mitre.oval:def:12871  View
51045 8858 CVE-2011-1991 MS11-071  View
51046 8858 CVE-2011-1991 TA11-256A  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
32163 JVNDB-2011-002403 Microsoft Windows における権限昇格の脆弱性 Microsoft Windows には、検索パスに関する処理に不備があるため、権限を取得される脆弱性が存在します。 CVE-2011-1991 49898 CVE-2011-1991 8858 9.3 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002403.html 2011-09-13 2011-10-20 View