924 matches found
Baidu.com disk has dll hijacking vulnerability
Baidu.com formerly Baidu Cloud is a cloud storage service launched by Baidu, which has covered mainstream PC and cell phone operating systems. A dll hijacking vulnerability exists in Baidu.com, which can be exploited by an attacker to load an untrusted dynamic link library for command execution...
Lenovo System Interface Foundation Input Validation Error Vulnerability
Lenovo System Interface Foundation is a set of software from Lenovo, a Chinese company, for communicating with hardware devices. An input validation error vulnerability exists in Lenovo System Interface Foundation. An attacker could exploit this vulnerability to execute an unsigned DLL file...
DLL Hijacking Vulnerability in App Store
Application Treasure is a mobile application acquisition platform created by Tencent Application Center for smartphone users. Application Treasure suffers from a DLL hijacking vulnerability, which can be exploited by an attacker to load untrusted dynamic link libraries for command execution...
Tencent Computer Management has a dll hijacking vulnerability
Tencent PC Butler is a free security software from Tencent. Tencent Computer Manager has a dll hijacking vulnerability, which can be exploited by attackers to load untrustworthy dynamic link libraries for command execution...
Tencent's Allk Song suffers from DLL hijacking vulnerability
Tencent National K Song is a karaoke software produced by Tencent, with various functions such as intelligent scoring, professional mixing, friends ring, fun interaction and social sharing. Tencent All K Song has a DLL hijacking vulnerability that can be exploited to load untrusted dynamic link...
Xunlei X is vulnerable to dll hijacking
Xunlei X is an Internet download tool software developed by Xunlei Corporation. Xunlei X suffers from a dll hijacking vulnerability, which can be exploited by an attacker to load an untrusted dynamic link library for command execution...
Tencent QQ Music suffers from dll hijacking vulnerability
Tencent QQ Music is an online music service product launched by Tencent. Tencent QQ Music suffers from a dll hijacking vulnerability, which can be exploited by an attacker to load an untrusted dynamic link library for command execution...
Privilege Escalation
redhat directory server is vulnerable to privilege escalation. It was found that multiple scripts shipped with Red Hat Directory Server set the LDLIBRARYPATH environment variable to an insecure value containing an empty path. A local user able to trick a user running those scripts usually the roo...
Privilege Escalation
rgmanager is vulnerable to privilege escalation. The vulnerability exists as it was discovered that certain resource agent scripts set the LDLIBRARYPATH environment variable to an insecure value containing empty path elements. A local user able to trick a user running those scripts to run them...
Schneider Electric Limited CET850 suffers from a dll hijacking vulnerability
Schneider Electric SA is a global electrical company headquartered in France. A dll hijacking vulnerability exists in Schneider Electric SA CET850, which can be exploited by an attacker to load a malicious dll and execute malicious code...
DLL Hijacking Vulnerability in GX Works2
GX Works2 is PLC programming software from Mitsubishi Electric, a Japanese company. GX Works2 suffers from a DLL hijacking vulnerability, which allows an attacker to construct a malicious application and place it in a specific path, causing the application to load a malicious DLL and execute it...
DLL Hijacking Vulnerability in IceAssistant PC Version
Ice Assistant is a professional Apple cell phone management assistant. There is a DLL hijacking vulnerability in IceAssistant PC version, which can be exploited by attackers to execute malicious DLL files...
Hancom Office HwordApp.dll Library tfo_common Component Resource Management Error Vulnerability
Hancom Office is a mobile office program from the Korean company Hancom. The program supports viewing and editing documents in many formats. hncbd90 is one of the hncbd90 libraries. A resource management error vulnerability exists in the tfocommon component of the HwordApp.dll library in Hancom...
Schneider Electric Limited Zelio Soft 2 installer suffers from a dll hijacking vulnerability
Zelio Soft 2 is a programming software for small intelligent controllers. A dll hijacking vulnerability exists in Zelio Soft 2 by Schneider Electric Ltd. that can be exploited by an attacker to load a malicious dll and execute malicious code...
SUSE-SU-2020:0722-1 Security update for nghttp2
This update for nghttp2 fixes the following issues: nghttp2 was update to version 1.40.0 bsc1166481 - lib: Add nghttp2checkauthority as public API - lib: Fix the bug that stream is closed with wrong error code - lib: Faster huffman encoding and decoding - build: Avoid filename collision of static...
Adaware antivirus elevation of privilege vulnerability
Lavasoft Adaware antivirus is a suite of antivirus software from Lavasoft Canada. A security vulnerability exists in Lavasoft Adaware antivirus versions 12.6.1005.11662 and 12.7.1055.0. The vulnerability can be exploited by an attacker to elevate privileges with the help of a malicious DLL...
WPS Office Campus Edition suffers from dll hijacking vulnerability
WPS Office Campus Edition is for campuses, teachers, students and other educational users, adding the team function of cloud documents, adding LaTeX formulas, geometric diagrams, mind maps and other professional drawing tools, combining with AI technology, adding thesis checking, super resume,...
Kingsoft Typewriter suffers from dll hijacking vulnerability
Kingsoft Typewriter is a typing software. A dll hijacking vulnerability exists in the Kingsoft Typewriter installer. An attacker can exploit this vulnerability to load a malicious dll and execute malicious code...
Baidu Five Strokes Input Method Exploits Dll Hijacking Vulnerability
Baidu 5-stroke Input Method is a Chinese 5-stroke input method software under Baidu. Baidu Five Strokes Input Method suffers from a Dll hijacking vulnerability, which can be exploited by attackers to load a malicious dll and execute arbitrary code...
Foxit PDF Editor Personal Edition Dll Hijacking Vulnerability
Foxit PDF Editor is a pdf editor from Fujian Foxit Software Development Co., Ltd. that allows you to easily modify the content of a PDF document in a WYSIWYG manner for reliable and convenient editing without the need to understand PDF format knowledge. Foxit PDF Editor Personal Edition has a Dll...