Vulnerabilities > CVE-2011-5155 - Unspecified vulnerability in Helpandmanual Help & Manual 5.5.1
Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
NONE Summary
Untrusted search path vulnerability in Help & Manual 5.5.1 Build 1296 allows local users to gain privileges via a Trojan horse ijl15.dll file in the current working directory, as demonstrated by a directory that contains a .hmxz, .hmxp, .hmskin, .hmx, .hm3, .hpj, .hlp, or .chm file. NOTE: some of these details are obtained from third party information. Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426 Untrusted Search Path'
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | EC Software Help & Manual 5.5.1 Build 1296 'ijl15.dll' DLL Loading Arbitrary Code Execution Vulnerability. CVE-2011-5155. Remote exploit for windows plat... |
| id | EDB-ID:35614 |
| last seen | 2016-02-04 |
| modified | 2011-04-14 |
| published | 2011-04-14 |
| reporter | LiquidWorm |
| source | https://www.exploit-db.com/download/35614/ |
| title | EC Software Help & Manual 5.5.1 Build 1296 - 'ijl15.dll' DLL Loading Arbitrary Code Execution Vulnerability |