CVE-2015-0978

Severity

69%

Complexity

34%

Confidentiality

165%

CWE-426: Untrusted Search Path

Multiple untrusted search path vulnerabilities in (1) EQATEC.Analytics.Monitor.Win32_vc100.dll and (2) EQATEC.Analytics.Monitor.Win32_vc100-x64.dll in Elipse E3 4.5.232 through 4.6.161 allow local users to gain privileges via a Trojan horse DLL in an unspecified directory. NOTE: this may overlap CVE-2015-2264.

CWE-426: Untrusted Search Path

CVSS 2.0 Base Score 6.9. CVSS Attack Vector: local. CVSS Attack Complexity: medium. CVSS Vector: (AV:L/AC:M/Au:N/C:C/I:C/A:C).

Overview

Type

Elipse E3

First reported 10 years ago

2015-03-14 01:59:00

Last updated 10 years ago

2015-03-16 18:29:00

Affected Software

Elipse Elipse E3 4.5

4.5

Elipse E3 4.6

4.6

References

https://ics-cert.us-cert.gov/advisories/ICSA-15-069-04A

Third Party Advisory, US Government Resource

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.