CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-3004

Multiple untrusted search path vulnerabilities in RealFlex RealWin before 2.1.13, FlexView before 3.1.86, and RealWinDemo before 2.1.13 allow local users to gain privileges via a Trojan horse (1) realwin.dll or (2) keyhook.dll file in the current working directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.2%

CVSS Severity

CVSS v2 Score 6.9

References

http://www.us-cert.gov/control_systems/pdf/ICSA-12-251-01.pdf
http://www.us-cert.gov/control_systems/pdf/ICSA-12-251-01.pdf

Products affected by CVE-2012-3004

Realflex » Flexview » Version: 3.1.85

cpe:2.3:a:realflex:flexview:3.1.85
Realflex » Realwin » Version: 1.06

cpe:2.3:a:realflex:realwin:1.06
Realflex » Realwin » Version: 2.0

cpe:2.3:a:realflex:realwin:2.0
Realflex » Realwin » Version: 2.1

cpe:2.3:a:realflex:realwin:2.1
Realflex » Realwin » Version: 2.1.12

cpe:2.3:a:realflex:realwin:2.1.12
Realflex » Realwindemo » Version: 2.1.12

cpe:2.3:a:realflex:realwindemo:2.1.12

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-3004

Products

Pricing

Contact Us