QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2012-0009

Back to search

CVE-2012-0009

Published: Jan 10, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

Untrusted search path vulnerability in the Windows Object Packager configuration in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a Trojan horse executable file in the current working directory, as demonstrated by a directory that contains a file with an embedded packaged object, aka "Object Packager Insecure Executable Launching Vulnerability."

VendorProductVersions

n/a

n/a

affected
n/a

References

MS12-002
vendor-advisory
x_refsource_MS
51297
vdb-entry
x_refsource_BID
TA12-010A
third-party-advisory
x_refsource_CERT
1026494
vdb-entry
x_refsource_SECTRACK
oval:org.mitre.oval:def:14393
vdb-entry
signature
x_refsource_OVAL
45189
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now