VYPR
← All advisories
Unrated severityNVD Advisory· Published May 12, 2010· Updated Apr 29, 2026

CVE-2010-1907

CVE-2010-1907

Description

The SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to discover the username of the client user, and consequently determine a pathname to a certain user directory, via a call to the GetUserName method.

Affected products

5
  • Consona/Consona Dynamic Agent3 versions
    cpe:2.3:a:consona:consona_dynamic_agent:-:-:enterprise:*:*:*:*:*+ 2 more
    • cpe:2.3:a:consona:consona_dynamic_agent:-:-:enterprise:*:*:*:*:*
    • cpe:2.3:a:consona:consona_dynamic_agent:-:-:marketing:*:*:*:*:*
    • cpe:2.3:a:consona:consona_dynamic_agent:-:-:support:*:*:*:*:*
  • Consona/Consona Live Assistance
    cpe:2.3:a:consona:consona_live_assistance:*:*:*:*:*:*:*:*
  • Consona/Consona Subscriber Assistance
    cpe:2.3:a:consona:consona_subscriber_assistance:*:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

News mentions

0

No linked articles in our index yet.