CVE-2015-2369 - Colligative Lapdance

Description

Untrusted search path vulnerability in Windows Media Device Manager in Microsoft Windows Server 2003 SP2 Windows Vista SP2 Windows Server 2008 SP2 and R2 SP1 and Windows 7 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory as demonstrated by a directory that contains a .rtf file aka \DLL Planting Remote Code Execution Vulnerability.\

Reference

http://www.securitytracker.com/id/1032898 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-069