CVE-2010-5236

Name of the Vulnerable Software and Affected Versions Roxio Easy Media Creator Home version 9.0.136

Description The issue allows local users to gain privileges via a Trojan horse homeutils9.dll file in the current working directory. This can be demonstrated by a directory that contains a .roxio, .c2d, or .gi file.

Recommendations For Roxio Easy Media Creator Home version 9.0.136, consider restricting access to the homeutils9.dll file to minimize the risk of exploitation. Avoid using directories that contain .roxio, .c2d, or .gi files until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.