Vulnerability in Gnome Gtk

CVE-2010-4833

Untrusted search path vulnerability in modules/engines/ms-windows/xp_theme.c in GTK+ before 2.24.0 allows local users to gain privileges via a Trojan horse uxtheme.dll file in the current working directory, a different vulnerability than C…

EPSS: 0.005 (67.1th percentile) — read the EPSS interpretation.

Affected products

Gnome Gtk
N/a — versions n/a

Weakness classification (CWE)

CWE-426 — Untrusted Search Path

References

49449 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID, Broken Link)
cve@mitre.org (x_refsource_CONFIRM, Patch)
45815 (x_refsource_SECUNIA, Broken Link, third-party-advisory)