Unrated severityNVD Advisory· Published Oct 18, 2010· Updated Apr 29, 2026

CVE-2010-2368

Description

Untrusted search path vulnerability in Lhaplus before 1.58 allows local users to gain privileges via a Trojan horse DLL in the current working directory.

Affected products

Lhaplus/Lhaplus5 versions
cpe:2.3:a:lhaplus:lhaplus:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:lhaplus:lhaplus:*:*:*:*:*:*:*:*range: <=1.57
- cpe:2.3:a:lhaplus:lhaplus:1.52:*:*:*:*:*:*:*
- cpe:2.3:a:lhaplus:lhaplus:1.53:*:*:*:*:*:*:*
- cpe:2.3:a:lhaplus:lhaplus:1.55:*:*:*:*:*:*:*
- cpe:2.3:a:lhaplus:lhaplus:1.56:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www7a.biglobe.ne.jp/~schezo/dll_vul.htmlnvdPatchVendor Advisory
jvn.jp/en/jp/JVN82752978/index.htmlnvd
jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000037.htmlnvd
secunia.com/advisories/41742nvd
www.ipa.go.jp/about/press/20101012.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000