KLA10972CIA hacking issue in Notepad++

2017-03-08T00:00:00
ID KLA10972
Type kaspersky
Reporter Kaspersky Lab
Modified 2019-03-07T00:00:00

Description

Detect date:

03/08/2017

Severity:

Critical

Description:

An issue of a hijacked DLL was found in Notepad++. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a sciexer.dll, which is replaced by version of sciexer.dll built by CIA.

Affected products:

Notepad++ versions earlier than 7.3.3

Solution:

Update to the latest version
Download Notepad++

Original advisories:

Notepad++ news

Related products:

Notepad++