Untrusted Search Path Vulnerability in Music Center for PC by Sony
CVE-2017-10892

7.8HIGH

Key Information:

Vendor: Sony Video & Sound Products Inc.
Status: Music Center For Pc
Vendor: CVE Published:; 1 December 2017

🔔 Create Sony Video & Sound Products Inc. Vulnerability Alert

What is CVE-2017-10892?

An untrusted search path vulnerability exists in Music Center for PC version 1.0.00, which allows an attacker to execute a Trojan horse DLL placed in an unspecified directory. By exploiting this flaw, attackers can gain elevated privileges, compromising the security of the affected system. Users are advised to be cautious of software installation and ensure they are using the latest software versions to mitigate potential risks.

Affected Version(s)

Music Center for PC version 1.0.00

References

https://jvn.jp/en/jp/JVN08517069/index.html

third-party-advisoryx_refsource_JVN

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 1, 2017
Vulnerability Reserved
Jul 4, 2017