CVE-2010-5248 Information

Description

Untrusted search path vulnerability in UltraVNC 1.0.8.2 allows local users to gain privileges via a Trojan horse vnclang.dll file in the current working directory as demonstrated by a directory that contains a .vnc file. NOTE: some of these details are obtained from third party information.

Reference

http://secunia.com/advisories/41208 http://web.archive.org/web/20100924002712/http://www.uvnc.com/download/