CVE-2010-5253

Name of the Vulnerable Software and Affected Versions WinImage version 8.50

Description The issue allows local users to gain privileges through an untrusted search path vulnerability. This can be exploited by placing a Trojan horse wnaspi32.dll file in the current working directory, particularly in a directory containing a .imz file.

Recommendations For WinImage version 8.50, consider removing or restricting access to the wnaspi32.dll file in the current working directory to minimize the risk of exploitation. Additionally, avoid opening .imz files from untrusted sources until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.