CVE-2017-11748

2017-07-3016:00:00

mitre

www.cve.org

vit spider player

untrusted search path

dll hijacking

trojan horse

dwmapi.dll

olepro32.dll

dsound.dll

audioses.dll

cve-2017-11748

EPSS

0.001

Percentile

39.4%

JSON

VIT Spider Player 2.5.3 has an untrusted search path, allowing DLL hijacking via a Trojan horse dwmapi.dll, olepro32.dll, dsound.dll, or AUDIOSES.dll file.

References

blog.pentest.space/2017/07/spider-player-253-unsafe-dll-loading.html

EPSS

0.001

Percentile

39.4%

JSON

Related for CVELIST:CVE-2017-11748