CVE-2010-5230

Name of the Vulnerable Software and Affected Versions MicroStation version 7.1

Description The issue allows local users to gain privileges via a Trojan horse file in the current working directory. This can be achieved by placing a malicious (1) mptools.dll, (2) baseman.dll, (3) wintab32.dll, or (4) wintab.dll file in a directory that contains a .hln or .rdl file.

Recommendations For MicroStation version 7.1, consider restricting access to the current working directory to prevent malicious files from being placed there, and avoid using untrusted search paths to minimize the risk of exploitation.