Unquoted Windows search path vulnerability in the GoogleChromeDistribution::DoPostUninstallOperations function in installer/util/google_chrome_distribution.cc in the uninstall-survey feature in Google Chrome before 40.0.2214.91 allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% directory, as demonstrated by program.exe, a different vulnerability than CVE-2015-1205.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2015-01-27T11:00:00
Updated: 2024-08-06T13:47:41.789Z
Reserved: 2015-01-26T00:00:00
Link: CVE-2014-9646
Vulnrichment
No data.
NVD
Status : Modified
Published: 2015-01-27T19:59:11.933
Modified: 2015-02-21T03:01:40.627
Link: CVE-2014-9646
Redhat
No data.