CVE-2010-2600

Untrusted search path vulnerability in BlackBerry Desktop Software before 6.0.0.47 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse DLL that is located in the same folder as a file that is processed by Blackberry.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 87%
VendorProductVersion
rimblackberry_desktop_software
𝑥
≤ 6.0
rimblackberry_desktop_software
3.0
rimblackberry_desktop_software
4.0
rimblackberry_desktop_software
4.5
rimblackberry_desktop_software
4.6
rimblackberry_desktop_software
4.7
rimblackberry_desktop_software
5.0
rimblackberry_desktop_software
5.0.1
𝑥
= Vulnerable software versions
References
http://secunia.com/advisories/41346
http://secunia.com/advisories/41398
http://www.blackberry.com/btsc/KB24242
http://www.securityfocus.com/bid/43139
http://www.securitytracker.com/id?1024425
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6843
http://secunia.com/advisories/41346
http://secunia.com/advisories/41398
http://www.blackberry.com/btsc/KB24242
http://www.securityfocus.com/bid/43139
http://www.securitytracker.com/id?1024425
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6843