QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2012-1849

Back to search

CVE-2012-1849

Published: Jun 12, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

Untrusted search path vulnerability in Microsoft Lync 2010, 2010 Attendee, and 2010 Attendant allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .ocsmeet file, aka "Lync Insecure Library Loading Vulnerability."

VendorProductVersions

n/a

n/a

affected
n/a

References

TA12-164A
third-party-advisory
x_refsource_CERT
oval:org.mitre.oval:def:14874
vdb-entry
signature
x_refsource_OVAL
MS12-039
vendor-advisory
x_refsource_MS

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now