Untrusted search path vulnerability in Microsoft Lync 2010, 2010 Attendee, and 2010 Attendant allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .ocsmeet file, aka "Lync Insecure Library Loading Vulnerability."
2012-06-12T22:55:01.420
2025-04-11T00:51:21.963
Deferred
CVSSv2: 9.3 (HIGH)
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.6
10.0
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | microsoft | lync | 2010 | Yes |
Application | microsoft | lync | 2010 | Yes |
Application | microsoft | lync | 2010 | Yes |
Application | microsoft | lync | 2010 | Yes |
Application | microsoft | lync | 2010 | Yes |