New Search

Backup Manager Insecure Library Loading Vulnerability

oval:org.mitre.oval:def:12273

Untrusted search path vulnerability in the BitLocker Drive Encryption API as used in sdclt.exe in Backup Manager in Microsoft Windows Vista SP1 and SP2 allows local users to gain privileges via a Trojan horse fveapi.dll file in the current working directory as demonstrated by a directory that contains a Windows Backup Catalog (.wbcat) file aka "Backup Manager Insecure Library Loading Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Vista
Class:
vulnerability
Reference(s):
  • CVE-2010-3145
Product(s):