Untrusted Search Path Vulnerability in Adobe Captivate by Adobe
CVE-2010-3191

Currently unrated

Key Information:

Vendor: Adobe
Status: Captivate
Vendor: CVE Published:; 31 August 2010

What is CVE-2010-3191?

An untrusted search path vulnerability in Adobe Captivate versions including 5.0.0.596 enables local users and potentially remote attackers to execute arbitrary code through DLL hijacking. This can occur when a malicious dwmapi.dll file is placed in the same directory as a .cptx file, allowing attackers to exploit this flaw for malicious purposes. Users are advised to ensure the integrity of their installations and avoid untrusted sources.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://secunia.com/advisories/41233

third-party-advisoryx_refsource_SECUNIA

EPSS Score

6% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 31, 2010
Vulnerability Reserved
Aug 31, 2010