CVE-2010-5196

Name of the Vulnerable Software and Affected Versions KeePass Password Safe versions prior to 2.13

Description The issue allows local users to gain privileges via a Trojan horse DwmApi.dll file in the current working directory. This can be demonstrated by a directory that contains a .kdbx file.

Recommendations For versions prior to 2.13, update to version 2.13 or later to resolve the issue. As a temporary workaround, consider restricting access to the current working directory to minimize the risk of exploitation. Avoid using untrusted search paths in the affected software until the issue is resolved.