CVE-2010-3130 Information

Description

Untrusted search path vulnerability in TechSmith Snagit all versions 10.x and 11.x allows local users and possibly remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a snag snagcc or snagprof file.

Reference

http://secunia.com/advisories/41124 http://www.exploit-db.com/exploits/14764 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A6668