CVE-2010-1795

EUVD-2010-1815
Untrusted search path vulnerability in Apple iTunes before 9.1, when running on Windows 7, Vista, and XP, allows local users and possibly remote attackers to gain privileges via a Trojan horse DLL in the current working directory.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
Affected Products (NVD)
VendorProductVersion
appleitunes
1.0
appleitunes
1.1.1
appleitunes
1.1.2
appleitunes
2.0.0
appleitunes
2.0.1
appleitunes
2.0.2
appleitunes
2.0.3
appleitunes
2.0.4
appleitunes
3.0.0
appleitunes
3.0.1
appleitunes
4.0.0
appleitunes
4.0.1
appleitunes
4.1.0
appleitunes
4.2.0
appleitunes
4.5.0
appleitunes
4.6.0
appleitunes
4.7.0
appleitunes
4.7.1
appleitunes
4.8.0
appleitunes
4.9.0
appleitunes
5.0.0
appleitunes
5.0.1
appleitunes
6.0.0
appleitunes
6.0.1
appleitunes
6.0.2
appleitunes
6.0.3
appleitunes
6.0.4
appleitunes
6.0.4.2
appleitunes
6.0.5
appleitunes
7.0.0
appleitunes
7.0.1
appleitunes
7.0.2
appleitunes
7.1.0
appleitunes
7.1.1
appleitunes
7.2.0
appleitunes
7.3.0
appleitunes
7.3.1
appleitunes
7.3.2
appleitunes
7.4.0
appleitunes
7.4.1
appleitunes
7.4.2
appleitunes
7.4.3
appleitunes
7.5.0
appleitunes
7.6.0
appleitunes
7.6.1
appleitunes
7.6.2
appleitunes
7.7.0
appleitunes
7.7.1
appleitunes
8.0
appleitunes
8.0.1
appleitunes
8.0.2
appleitunes
8.1
appleitunes
8.1.1
appleitunes
8.2
appleitunes
8.2.1
appleitunes
9.0.0
appleitunes
9.0.1
appleitunes
9.0.2
appleitunes
9.0.3
𝑥
= Vulnerable software versions
References
http://support.apple.com/kb/HT4105
http://www.acrossecurity.com/aspr/ASPR-2010-08-18-1-PUB.txt
http://www.securityfocus.com/archive/1/513190/100/0/threaded
http://www.securityfocus.com/bid/42541
https://exchange.xforce.ibmcloud.com/vulnerabilities/61223
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7217
http://support.apple.com/kb/HT4105
http://www.acrossecurity.com/aspr/ASPR-2010-08-18-1-PUB.txt
http://www.securityfocus.com/archive/1/513190/100/0/threaded
http://www.securityfocus.com/bid/42541
https://exchange.xforce.ibmcloud.com/vulnerabilities/61223
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7217