Untrusted Search Path Vulnerability in KeePass Password Safe by KeePass
CVE-2010-5200

Currently unrated

Key Information:

Vendor: Keepass
Status: Keepass
Vendor: CVE Published:; 6 September 2012

What is CVE-2010-5200?

The untrusted search path vulnerability in KeePass Password Safe, prior to version 1.18, allows local users to potentially escalate privileges by placing a malicious DLL in the current working directory. Attackers can exploit this vulnerability by creating a specially crafted directory that includes a .kdb file, leading to unauthorized actions on the user's system.

References

http://secunia.com/advisories/41270

third-party-advisoryx_refsource_SECUNIA

http://keepass.info/news/n100902_1.18.html

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Sep 6, 2012

Keepass

What is CVE-2010-5200?

References

Timeline