CVE-2005-1185

Description

Unquoted Windows search path vulnerability in Musicmatch Jukebox 10.00.2047 and earlier allows local users to gain privileges via a malicious C:\program.exe file, which is run by MMFWLaunch.exe when it attempts to execute launch.exe.

Affected Software
References

Software	From	Fixed in
musicmatch / jukebox	-	10.00.2047.x

http://marc.info/?l=bugtraq&m=111352290711509&w=2
http://securitytracker.com/id?1013718
http://www.hyperdose.com/advisories/H2005-05.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/20129

Severity: Low

CVE: CVE-2005-1185
Published: May 2, 2005
Updated: Apr 13, 2023
Exploit:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

CVE-2005-1185

Description

Details

CVSS v2