CVE-2010-5217

Name of the Vulnerable Software and Affected Versions TuneUp Utilities versions 8.0.3310 through 9.0.4600

Description The issue allows local users to gain privileges via a Trojan horse wscapi.dll or vclib32.dll file in the current working directory. This can be demonstrated by a directory that contains a .tvs file.

Recommendations For versions 8.0.3310 and 9.0.4600, consider restricting access to the wscapi.dll and vclib32.dll files to minimize the risk of exploitation. Avoid executing files from untrusted directories to reduce the risk of loading malicious wscapi.dll or vclib32.dll files. At the moment, there is no information about a newer version that contains a fix for this issue.