CVE-2010-5207

Name of the Vulnerable Software and Affected Versions CelFrame Office 2008 Standard Edition

Description The issue allows local users to gain privileges via a Trojan horse java msci.dll or msci java.dll file in the current working directory. This can be demonstrated by a directory that contains a .doc, .xls, or .odg file.

Recommendations For CelFrame Office 2008 Standard Edition, consider restricting access to untrusted search paths to minimize the risk of exploitation. As a temporary workaround, avoid using directories that contain untrusted files, especially those with .doc, .xls, or .odg extensions, until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.