fkie_cve-2010-3161
Vulnerability from fkie_nvd
Published
2010-10-25 20:01
Modified
2025-04-11 00:51
Severity ?
Summary
Untrusted search path vulnerability in TeraPad before 1.00 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
References
vultures@jpcert.or.jphttp://jvn.jp/en/jp/JVN48097065/index.html
vultures@jpcert.or.jphttp://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000045.html
vultures@jpcert.or.jphttp://www5f.biglobe.ne.jp/~t-susumu/dl/tpad/History.txt
af854a3a-2127-422b-91ae-364da2661108http://jvn.jp/en/jp/JVN48097065/index.html
af854a3a-2127-422b-91ae-364da2661108http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000045.html
af854a3a-2127-422b-91ae-364da2661108http://www5f.biglobe.ne.jp/~t-susumu/dl/tpad/History.txt
Impacted products
Vendor Product Version
susumu_terao terapad *
susumu_terao terapad 0.01
susumu_terao terapad 0.02
susumu_terao terapad 0.03
susumu_terao terapad 0.04
susumu_terao terapad 0.05
susumu_terao terapad 0.06
susumu_terao terapad 0.07
susumu_terao terapad 0.08
susumu_terao terapad 0.09
susumu_terao terapad 0.10
susumu_terao terapad 0.11
susumu_terao terapad 0.12
susumu_terao terapad 0.13
susumu_terao terapad 0.14
susumu_terao terapad 0.15
susumu_terao terapad 0.20
susumu_terao terapad 0.21
susumu_terao terapad 0.22
susumu_terao terapad 0.23
susumu_terao terapad 0.24
susumu_terao terapad 0.25
susumu_terao terapad 0.30
susumu_terao terapad 0.31
susumu_terao terapad 0.32
susumu_terao terapad 0.33
susumu_terao terapad 0.34
susumu_terao terapad 0.35
susumu_terao terapad 0.36
susumu_terao terapad 0.37
susumu_terao terapad 0.38
susumu_terao terapad 0.39
susumu_terao terapad 0.40
susumu_terao terapad 0.41
susumu_terao terapad 0.42
susumu_terao terapad 0.50
susumu_terao terapad 0.51
susumu_terao terapad 0.52
susumu_terao terapad 0.60
susumu_terao terapad 0.61
susumu_terao terapad 0.70
susumu_terao terapad 0.71
susumu_terao terapad 0.72
susumu_terao terapad 0.73
susumu_terao terapad 0.74
susumu_terao terapad 0.75
susumu_terao terapad 0.76
susumu_terao terapad 0.77
susumu_terao terapad 0.78
susumu_terao terapad 0.79
susumu_terao terapad 0.80
susumu_terao terapad 0.81
susumu_terao terapad 0.82
susumu_terao terapad 0.83
susumu_terao terapad 0.84
susumu_terao terapad 0.85
susumu_terao terapad 0.86
susumu_terao terapad 0.87
susumu_terao terapad 0.88
susumu_terao terapad 0.89
susumu_terao terapad 0.89a
susumu_terao terapad 0.90
susumu_terao terapad 0.91
susumu_terao terapad 0.92


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4E1AA6E-1954-4380-8B07-65429EA4591C",
              "versionEndIncluding": "0.93",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.01:*:*:*:*:*:*:*",
              "matchCriteriaId": "BB63BD53-2984-4CAE-9AAA-9D8397707EFF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.02:*:*:*:*:*:*:*",
              "matchCriteriaId": "E3058D68-F785-4347-BF02-DB515ADC4D9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.03:*:*:*:*:*:*:*",
              "matchCriteriaId": "9A83CEB0-69CF-4195-9D58-C1A4EABF1223",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.04:*:*:*:*:*:*:*",
              "matchCriteriaId": "9EAE5B87-183E-4917-B097-D9C0F200FE99",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.05:*:*:*:*:*:*:*",
              "matchCriteriaId": "18EB3512-0596-486F-B90F-F9CE1C32A372",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.06:*:*:*:*:*:*:*",
              "matchCriteriaId": "1C2ABDEE-D9A0-44E4-A322-A989227E7D5D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.07:*:*:*:*:*:*:*",
              "matchCriteriaId": "B300BFBC-78CE-4956-93DC-42B888957C5D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.08:*:*:*:*:*:*:*",
              "matchCriteriaId": "D1EC81B2-7D57-4E5B-8704-5178DE89D010",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.09:*:*:*:*:*:*:*",
              "matchCriteriaId": "BC5613BF-3558-499E-B848-2C1E6C96E845",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "F1DCCF20-D2D7-4EF5-AC7A-26D8EBCBC2D5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "A161A725-1ADD-4AA1-8DCF-E164B8F7EF43",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "62B89346-3D45-4B87-B979-DD357D15B92B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "15862758-FEF8-43EC-929A-FA5389AAB6C0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "D79D02BB-06EC-4BB8-9C40-45873EB6AD74",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "012F3601-97A3-4B70-830F-C6DDCBE4C741",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.20:*:*:*:*:*:*:*",
              "matchCriteriaId": "FCB71CE7-4F27-44C0-A48F-F72ED8584F9C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.21:*:*:*:*:*:*:*",
              "matchCriteriaId": "FA50B170-6513-404D-8DD1-0F394B69E8E5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.22:*:*:*:*:*:*:*",
              "matchCriteriaId": "1AA91FAA-AFD1-4DB4-BB22-A0447BFF1D52",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.23:*:*:*:*:*:*:*",
              "matchCriteriaId": "D9080DEC-5B66-4168-897B-2FE7A57871D9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.24:*:*:*:*:*:*:*",
              "matchCriteriaId": "29F23E13-A37C-48F6-9EAD-E9850A4F8822",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.25:*:*:*:*:*:*:*",
              "matchCriteriaId": "60DBF00B-2DB3-4BDD-9058-1CEB198A48DC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.30:*:*:*:*:*:*:*",
              "matchCriteriaId": "29D89974-BD86-43BA-A9E5-A52141D4B0B9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.31:*:*:*:*:*:*:*",
              "matchCriteriaId": "FD227FAC-40D3-42AC-AA16-063D4272CBDA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.32:*:*:*:*:*:*:*",
              "matchCriteriaId": "B983DE73-1849-4F1E-9205-3D06C2E93FF7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.33:*:*:*:*:*:*:*",
              "matchCriteriaId": "3AB2ED4C-3B45-4847-A57B-DA68DFC55F1B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.34:*:*:*:*:*:*:*",
              "matchCriteriaId": "95DE0069-DE51-4F7F-9515-7CCBBCD93A3B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.35:*:*:*:*:*:*:*",
              "matchCriteriaId": "AA2A87A1-A88E-4D3B-BE17-3F03276F4C26",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.36:*:*:*:*:*:*:*",
              "matchCriteriaId": "55076B82-D612-4BAE-B5ED-47FF8734060D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.37:*:*:*:*:*:*:*",
              "matchCriteriaId": "E2B6FB3E-C987-40FA-95A4-D0951A0A7281",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.38:*:*:*:*:*:*:*",
              "matchCriteriaId": "1677F991-94A7-4566-8260-46762B735B06",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.39:*:*:*:*:*:*:*",
              "matchCriteriaId": "C496499F-87B5-4CEE-B735-DEE6FC335F8C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.40:*:*:*:*:*:*:*",
              "matchCriteriaId": "144717F5-4921-45AE-9F90-93F6427D16AC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.41:*:*:*:*:*:*:*",
              "matchCriteriaId": "4C3877C4-8AEA-4614-B499-CAF397FEF3B8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.42:*:*:*:*:*:*:*",
              "matchCriteriaId": "D50E14AC-BB0F-4A3F-998F-8010A137234F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.50:*:*:*:*:*:*:*",
              "matchCriteriaId": "1D0717E7-B139-4F47-AC69-D20BC52C5980",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.51:*:*:*:*:*:*:*",
              "matchCriteriaId": "F2FB2C61-D7E6-4E09-8718-75A77FD36193",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.52:*:*:*:*:*:*:*",
              "matchCriteriaId": "B1FC0634-C6AB-41C4-8783-A9D0288F8C9F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.60:*:*:*:*:*:*:*",
              "matchCriteriaId": "AB192777-40AE-444A-8C2A-B5018A26FB0B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.61:*:*:*:*:*:*:*",
              "matchCriteriaId": "95BE235C-0DA0-400F-88F5-4A64653D6FAA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.70:*:*:*:*:*:*:*",
              "matchCriteriaId": "F374D4DF-E0C8-4175-A2A1-04673ECB8A7E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.71:*:*:*:*:*:*:*",
              "matchCriteriaId": "6AE4D588-50CF-4044-AB2C-AEAFC585328F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.72:*:*:*:*:*:*:*",
              "matchCriteriaId": "BB074D8A-B2CB-4F9A-890B-5A36A7B23008",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.73:*:*:*:*:*:*:*",
              "matchCriteriaId": "A3AA8273-E1D0-4ACC-99A1-119871148A74",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.74:*:*:*:*:*:*:*",
              "matchCriteriaId": "ABEC11FF-A814-482A-9CD3-57841B17FD51",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.75:*:*:*:*:*:*:*",
              "matchCriteriaId": "997AAE9A-4C53-4161-A721-79875E0F0C4A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.76:*:*:*:*:*:*:*",
              "matchCriteriaId": "B959AE49-CB3F-44B8-BE47-E72552D3C2A2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.77:*:*:*:*:*:*:*",
              "matchCriteriaId": "07D2922A-1805-4566-9737-E70C6AFDF7B7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.78:*:*:*:*:*:*:*",
              "matchCriteriaId": "B7528B40-9D62-403B-B7CB-E4CD0A738DA3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.79:*:*:*:*:*:*:*",
              "matchCriteriaId": "03B2ED1D-160A-4E6C-AEA1-9BE0C21BD6C1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.80:*:*:*:*:*:*:*",
              "matchCriteriaId": "F85ECF43-83F5-4D11-87DC-680D5D40101F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.81:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCE7B825-74F0-46A9-9D17-43C11BD976B5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.82:*:*:*:*:*:*:*",
              "matchCriteriaId": "7D6E39DA-846E-4068-A021-E151CEDAB74E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.83:*:*:*:*:*:*:*",
              "matchCriteriaId": "AB08F3D5-6A38-4ED2-B72E-1C8C511BD493",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.84:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7ABB5C5-DF74-463B-A0F9-0C66D8CF4C62",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.85:*:*:*:*:*:*:*",
              "matchCriteriaId": "44D298BF-8828-4E8B-8D01-15E32D1696F9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.86:*:*:*:*:*:*:*",
              "matchCriteriaId": "8DDDD9B9-FF89-4520-8102-8691C9B14343",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.87:*:*:*:*:*:*:*",
              "matchCriteriaId": "3385A62A-5DF4-4E44-8DA0-9BEA912DA680",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.88:*:*:*:*:*:*:*",
              "matchCriteriaId": "1053D2A3-8046-4A8C-B708-876C42883921",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.89:*:*:*:*:*:*:*",
              "matchCriteriaId": "09EC7237-B6C9-4BC1-B344-8446C8C8AE55",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.89a:*:*:*:*:*:*:*",
              "matchCriteriaId": "25B97CDC-DD92-4CB4-95AE-93A48D672DBF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.90:*:*:*:*:*:*:*",
              "matchCriteriaId": "516867DC-E0E0-4024-97BC-670B71284E56",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.91:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BCA8596-6326-4182-9E60-0477B65C3F57",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:susumu_terao:terapad:0.92:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AED80A-0719-4EB1-B4FE-269E729CD0B6",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Untrusted search path vulnerability in TeraPad before 1.00 allows local users to gain privileges via a Trojan horse DLL in the current working directory."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de ruta de b\u00fasqueda no confiable en TeraPad anteriores a v1.00 permite a usuarios locales obtener privilegios a trav\u00e9s de un troyano  que est\u00e1 ubicado en el directorio de trabajo actual."
    }
  ],
  "evaluatorComment": "Per: http://cwe.mitre.org/data/definitions/426.html\r\n\r\n\u0027CWE-426: Untrusted Search Path\u0027",
  "id": "CVE-2010-3161",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 6.9,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 3.4,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2010-10-25T20:01:02.783",
  "references": [
    {
      "source": "vultures@jpcert.or.jp",
      "url": "http://jvn.jp/en/jp/JVN48097065/index.html"
    },
    {
      "source": "vultures@jpcert.or.jp",
      "url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000045.html"
    },
    {
      "source": "vultures@jpcert.or.jp",
      "url": "http://www5f.biglobe.ne.jp/~t-susumu/dl/tpad/History.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://jvn.jp/en/jp/JVN48097065/index.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-000045.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www5f.biglobe.ne.jp/~t-susumu/dl/tpad/History.txt"
    }
  ],
  "sourceIdentifier": "vultures@jpcert.or.jp",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.