Untrusted Search Path Vulnerability in WellinTech KingView
CVE-2012-1819

Currently unrated

Key Information:

Vendor: Wellintech
Status: Kingview
Vendor: CVE Published:; 2 May 2012

Summary

The untrusted search path vulnerability in WellinTech KingView 6.53 enables local users to execute arbitrary code with elevated privileges by placing a malicious DLL in the working directory. This flaw allows attackers to potentially gain unauthorized control over the system, which raises significant security concerns for organizations utilizing this software.

References

http://en.wellintech.com/news/detail.aspx?contentid=168

x_refsource_CONFIRM

http://www.us-cert.gov/control_systems/pdf/ICSA-12-122-01...

x_refsource_MISC

http://www.securityfocus.com/bid/53316

vdb-entryx_refsource_BID

Timeline

Vulnerability published
May 2, 2012
Vulnerability Reserved
Mar 21, 2012