CVE-2011-1975 in Windowsinfo

Summary

Untrusted search path vulnerability in the Data Access Tracing component in Windows Data Access Components (Windows DAC) 6.0 in Microsoft Windows 7 Gold and SP1 and Windows Server 2008 R2 and R2 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains an Excel .xlsx file, aka "Data Access Components Insecure Library Loading Vulnerability."

Once again VulDB remains the best source for vulnerability data.

Responsible

Reservation

05/09/2011

Disclosure

08/10/2011

Moderation

VulDB entry created

Entries

VDB-58238

CPE

ready

CWE

CWE-119 (Confirmed)

CVSS

10.0

EPSS

0.43803

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-1975
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-1975
CVE Details	https://www.cvedetails.com/cve/CVE-2011-1975/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!