Vulnerability Details : CVE-2018-6461
March Hare WINCVS before 2.8.01 build 6610, and CVS Suite before 2009R2 build 6610, contains an Insecure Library Loading vulnerability in the wincvs2.exe or wincvs.exe file, which may allow local users to gain privileges via a Trojan horse Python or TCL DLL file in the current working directory.
Vulnerability category: File inclusion
Products affected by CVE-2018-6461
- cpe:2.3:a:march-hare:wincvs:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-6461
0.07%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 29 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-6461
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
NIST | |
7.8
|
HIGH | CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST |
CWE ids for CVE-2018-6461
-
The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-6461
-
http://march-hare.com/cvspro/vulnwincvs.htm
WINCVS Security Vulnerability or ExposureVendor Advisory
-
http://hyp3rlinx.altervista.org/advisories/CVS-SUITE-2009R2-INSECURE-LIBRARY-LOADING-CVE-2018-6461.txt
Exploit;Third Party Advisory
-
http://packetstormsecurity.com/files/146267/WINCVS-2009R2-DLL-Hijacking.html
WINCVS 2009R2 DLL Hijacking ≈ Packet StormExploit;Third Party Advisory;VDB Entry
-
http://seclists.org/fulldisclosure/2018/Feb/24
Full Disclosure: CVS Suite 2009R2 Insecure Library Loading CVE-2018-6461Exploit;Mailing List;Third Party Advisory
Jump to