CVE-2010-5216

Name of the Vulnerable Software and Affected Versions LINGO versions 11.0.1.6 through 12.0.2.20

Description The issue allows local users to gain privileges via a Trojan horse myuser.dll file in the current working directory. This can be demonstrated by a directory that contains a .ltf file.

Recommendations For versions 11.0.1.6 through 12.0.2.20, consider restricting access to the current working directory to prevent the placement of malicious myuser.dll files until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.