Skip to main content

Lenovo ThinkPad Bluetooth with Enhanced Data Rate Software Insecure Library Loading Vulnerability

Last Update Date: 23 Jan 2013 11:45 Release Date: 23 Jan 2013 4530 Views

RISK: High Risk

TYPE: Operating Systems - Windows OS

TYPE: Windows OS

A vulnerability has been identified in Lenovo Bluetooth with Enhanced Data Rate Software, which can be exploited by malicious people to compromise a user's system.  The vulnerability is caused due to the application loading libraries in an insecure manner. This can be exploited to load arbitrary libraries by tricking a user into opening certain files on a remote WebDAV or SMB share.  Successful exploitation allows execution of arbitrary code.


Impact

  • Remote Code Execution

System / Technologies affected

  • Lenovo Bluetooth with Enhanced Data Rate Software 6.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.


Vulnerability Identifier


Source


Related Link