Untrusted Search Path Vulnerability in Adobe Captivate by Adobe
CVE-2010-3191

Currently unrated

Key Information:

Vendor: Adobe
Status: Captivate
Vendor: CVE Published:; 31 August 2010

Summary

An untrusted search path vulnerability in Adobe Captivate versions including 5.0.0.596 enables local users and potentially remote attackers to execute arbitrary code through DLL hijacking. This can occur when a malicious dwmapi.dll file is placed in the same directory as a .cptx file, allowing attackers to exploit this flaw for malicious purposes. Users are advised to ensure the integrity of their installations and avoid untrusted sources.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://secunia.com/advisories/41233

third-party-advisoryx_refsource_SECUNIA

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 31, 2010
Vulnerability Reserved
Aug 31, 2010