Back to search
CVE-2010-3402
Published: Sep 16, 2010
Modified: Sep 17, 2024
PUBLISHED
Description
Untrusted search path vulnerability in IDM Computer Solutions UltraEdit 16.20.0.1009, 16.10.0.1036, and probably other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a bin, cpp, css, c, dat, hpp, html, h, ini, java, log, mak, php, prj, txt, or xml file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
43183
vdb-entry
x_refsource_BID
67995
vdb-entry
x_refsource_OSVDB
41403
third-party-advisory
x_refsource_SECUNIA
20100912 UltraEdit Text Editor version 16.10.0.1036 <= Insecure DLL Hijacking Vulnerability (dwmapi.dll)
mailing-list
x_refsource_FULLDISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now