CVE-2012-3841

Untrusted search path vulnerability in KMPlayer 3.2.0.19 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ehtrace.dll that is located in the current working directory.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
VendorProductVersion
kmplayerkmplayer
3.2.0.19
𝑥
= Vulnerable software versions
References
http://osvdb.org/81558
http://packetstormsecurity.org/files/112218/KMPlayer-3.2.0.19-DLL-Hijack.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/75193
http://osvdb.org/81558
http://packetstormsecurity.org/files/112218/KMPlayer-3.2.0.19-DLL-Hijack.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/75193