Unrated severityNVD Advisory· Published Jun 12, 2012· Updated Jun 16, 2026
CVE-2012-1849
CVE-2012-1849
Description
Untrusted search path vulnerability in Microsoft Lync 2010, 2010 Attendee, and 2010 Attendant allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .ocsmeet file, aka "Lync Insecure Library Loading Vulnerability."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:microsoft:lync:2010:*:attendant_x64:*:*:*:*:*+ 5 more
- cpe:2.3:a:microsoft:lync:2010:*:attendant_x64:*:*:*:*:*
- cpe:2.3:a:microsoft:lync:2010:*:attendant_x86:*:*:*:*:*
- cpe:2.3:a:microsoft:lync:2010:*:attendee:*:*:*:*:*
- cpe:2.3:a:microsoft:lync:2010:*:x64:*:*:*:*:*
- cpe:2.3:a:microsoft:lync:2010:*:x86:*:*:*:*:*
- (no CPE)range: 2010
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.