CVE-2011-5157

EUVD-2011-5057
Untrusted search path vulnerability in Attachmate Reflection before 14.1 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, a related issue to CVE-2011-0107. NOTE: some of these details are obtained from third party information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 16%
Affected Products (NVD)
VendorProductVersion
attachmatereflection_for_hp
14.0
attachmatereflection_for_hp
14.1:sp1
attachmatereflection_for_ibm
14.0
attachmatereflection_for_ibm
14.1:sp1
attachmatereflection_for_regis_graphics_server
14.0
attachmatereflection_for_regis_graphics_server
14.1:sp1
attachmatereflection_for_unix_and_openvms
14.0
attachmatereflection_for_unix_and_openvms
14.1:sp1
attachmatereflection_x
14.0
attachmatereflection_x
14.1:sp1
𝑥
= Vulnerable software versions
References
http://secunia.com/advisories/46692
http://support.attachmate.com/techdocs/1708.html
http://www.securityfocus.com/bid/50496
https://exchange.xforce.ibmcloud.com/vulnerabilities/78318
http://secunia.com/advisories/46692
http://support.attachmate.com/techdocs/1708.html
http://www.securityfocus.com/bid/50496
https://exchange.xforce.ibmcloud.com/vulnerabilities/78318