CVE-2013-1361

Published: Jan 21, 2014Modified: Apr 29, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Untrusted search path vulnerability in Lenovo Thinkpad Bluetooth with Enhanced Data Rate Software 6.4.0.2900 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse DLL that is located in the same folder as a file that is processed by Lenovo Bluetooth.

Affected (1)

Products: Lenovo: Thinkpad Bluetooth With Enhanced Data Rate Software

1 product

Thinkpad Bluetooth With Enhanced Data Rate Software

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Lenovo Thinkpad Bluetooth With Enhanced Data Rate Software	Up to 6.4.0.2900

References (10)

http://secunia.com/advisories/51846

Source: cve@mitre.org

Vendor Advisory

http://technet.microsoft.com/en-us/security/msvr/msvr13-001

Source: cve@mitre.org

http://www.osvdb.org/89483

Source: cve@mitre.org

http://www.securityfocus.com/bid/57504

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/81428

Source: cve@mitre.org

http://secunia.com/advisories/51846

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://technet.microsoft.com/en-us/security/msvr/msvr13-001

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/89483

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/57504

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/81428

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.