CVE-2010-5243 Information

Description

Multiple untrusted search path vulnerabilities in Cyberlink Power2Go 7.0.0.0816 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) MFC71LOC.DLL file in the current working directory as demonstrated by a directory that contains a .p2g .iso .pdl .pds or .p2i file. NOTE: some of these details are obtained from third party information.

Reference

http://extraexploit.blogspot.com/2010/08/dll-hijacking-my-test-cases-on-default.html http://secunia.com/advisories/41174