New Search

Color Control Panel Insecure Library Loading Vulnerability

oval:org.mitre.oval:def:14446

Untrusted search path vulnerability in colorcpl.exe 6.0.6000.16386 in the Color Control Panel in Microsoft Windows Server 2008 SP2 R2 and R2 SP1 allows local users to gain privileges via a Trojan horse sti.dll file in the current working directory as demonstrated by a directory that contains a .camp .cdmp .gmmp .icc or .icm file aka "Color Control Panel Insecure Library Loading Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2008 R2
Class:
vulnerability
Reference(s):
  • CVE-2010-5082
Product(s):