Vulnerabilities > CVE-2011-3690 - Unspecified vulnerability in Plotsoft Pdfill PDF Editor 8.0

CVSS 9.3 - CRITICAL

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

plotsoft

critical

NVD

Published: 2011-09-27

Updated: 2012-02-21

Summary

Untrusted search path vulnerability in PlotSoft PDFill PDF Editor 8.0 allows local users to gain privileges via a Trojan horse mfc70enu.dll or mfc80loc.dll in the current working directory. Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426: Untrusted Search Path'

Vulnerable Configurations

Part	Description	Count
Application	Plotsoft Plotsoft Pdfill PDF Editor 8.0	1

References

http://www.solutionary.com/index/SERT/Vuln-Disclosures/PDFill-Insecure-Library.html