CVE-2011-0029

Untrusted search path vulnerability in the client in Microsoft Remote Desktop Connection 5.2, 6.0, 6.1, and 7.0 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .rdp file, aka "Remote Desktop Insecure Library Loading Vulnerability."
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:C/I:C/A:C
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
microsoftremote_desktop_connection_client
5.2
microsoftremote_desktop_connection_client
6.0
microsoftwindows_2003_server
*
microsoftwindows_server_2003
*
microsoftwindows_xp
-
microsoftremote_desktop_connection_client
7.0
microsoftwindows_7
-
microsoftremote_desktop_connection_client
6.1
microsoftwindows_server_2008
*
microsoftwindows_server_2008
*
microsoftwindows_server_2008
*
microsoftwindows_server_2008
*
microsoftwindows_server_2008
*
microsoftwindows_server_2008
-
microsoftwindows_vista
*
microsoftwindows_vista
*
microsoftwindows_xp
*
𝑥
= Vulnerable software versions