Severity: : Critical
  Advisory Date: 21 lipca 2015

  DESCRIPTION

Untrusted search path vulnerability in Microsoft Lync 2010, 2010 Attendee, and 2010 Attendant allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .ocsmeet file, aka "Lync Insecure Library Loading Vulnerability." nvd: Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426: Untrusted Search Path'

  INFORMATION EXPOSURE

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1005050