CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-1185

Unquoted Windows search path vulnerability in Musicmatch Jukebox 10.00.2047 and earlier allows local users to gain privileges via a malicious C:\program.exe file, which is run by MMFWLaunch.exe when it attempts to execute launch.exe.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.7%

CVSS Severity

CVSS v2 Score 4.6

References

http://marc.info/?l=bugtraq&m=111352290711509&w=2
http://securitytracker.com/id?1013718
http://www.hyperdose.com/advisories/H2005-05.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/20129
http://marc.info/?l=bugtraq&m=111352290711509&w=2
http://securitytracker.com/id?1013718
http://www.hyperdose.com/advisories/H2005-05.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/20129

Products affected by CVE-2005-1185

Musicmatch » Jukebox » Version: Any

cpe:2.3:a:musicmatch:jukebox:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-1185

Products

Pricing

Contact Us