QQ Video pc client software suffers from dll hijacking vulnerability

QQ Video is a local player from Tencent that supports movie and music files in any format. QQ Video pc client software suffers from a dll hijacking vulnerability, which can be exploited by attackers to inject DLL files and execute arbitrary commands...

Fengxing video pc client software has dll hijacking vulnerability

Fengxing Video pc client is a free video playback software, which is an integrated HD movie and TV viewing software for online viewing and downloading. Fengxing Video pc client software has a dll hijacking vulnerability, which can be exploited by attackers to inject executable DLL files and execu...

NVIDIA Windows GPU Display Driver Code Execution Vulnerability

NVIDIA Windows GPU Display Driver is a graphics processor GPU graphics card driver from NVIDIA dedicated to the Windows platform. A code execution vulnerability exists in the NVIDIA Control Panel of the NVIDIA Windows GPU Display Driver. The vulnerability stems from the NVIDIA control panel...

Apple macOS Catalina and Apple iTunes for Windows Dynamic Library Loading Vulnerability

Apple iTunes for Windows and Apple macOS Catalina are both products of Apple Inc. Apple iTunes for Windows is a Windows-based media player application. apple macOS Catalina is a specialized operating system developed for Mac computers. Apple macOS Catalina is a specialized operating system...

Apple iTunes Security Updates (HT210726)

Apple iTunes is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:itunes"; ifdescription...

KLA11602 Multiple vulnerabilities in Apple iTunes

Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack, cause denial of service. Below is a complete list of vulnerabilities: 1. Multiple memory corruption vulnerabilities in WebKit...

Apple Mac OS X Security Updates (HT210722)-01

Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

About the security content of iTunes 12.10.2 for Windows

About the security content of iTunes 12.10.2 for Windows This document describes the security content of iTunes 12.10.2 for Windows. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...

NSA Ghidra DLL Hijacking Vulnerability

NSA Ghidra is an open source reverse engineering tool from the National Security Agency NSA. A DLL hijacking vulnerability exists in NSA Ghidra versions prior to 9.0.2, which originates when Ghidra loads jansi.dll from the current working directory, which can be exploited to execute arbitrary cod...

Adobe Application Manager unsafe library loading (dll hijacking) vulnerability

Adobe Application Manager AAM is an application for managing Adobe products from the American company Audobee Adobe. The program is mainly used to manage the installation of Adobe products, updates and so on. Adobe Application Manager suffers from an insecure library loading DLL hijacking...

cad mini drawing suffers from dll hijacking vulnerability (CNVD-2019-33724)

Shanghai Xiaomai Technology is an Internet software and engineering data service provider for the building decoration and related manufacturing industries in China. A dll hijacking vulnerability exists in cad mini drawing CNVD-C-2019-128647. An attacker can exploit the vulnerability to load a...

CVE-2019-14687

A DLL hijacking vulnerability exists in Trend Micro Password Manager 5.0 in which, if exploited, would allow an attacker to load an arbitrary unsigned DLL into the signed service's process. This process is very similar, yet not identical to CVE-2019-14684...

ABB Panel Builder 600 suffers from dll hijacking vulnerability

The ABB Group is a global leader in power and automation technology and is committed to providing solutions for customers in the industrial and power sectors. ABB Panel Builder 600 suffers from a dll hijacking vulnerability that can be exploited by attackers to load a malicious dll and execute...

ABB Pluto Manager has a dll hijacking vulnerability

The ABB Group is a global leader in power and automation technology and is committed to providing solutions for customers in the industrial and power sectors. ABB Pluto Manager suffers from a dll hijacking vulnerability that can be exploited by attackers to load a malicious dll and execute...

Adobe Character Animator CC 2019 Insecure Library Loading (DLL Hijacking) Vulnerability

Adobe Character Animator CC 2019 is a desktop application software product that combines real-time motion capture with a multi-track recording system to control layered 2D puppets drawn in Photoshop or Illustrator. An insecure library loading DLL hijacking vulnerability exists in Adobe Character...

CVE-2019-1174

An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated attacker could run a...

CVE-2019-8062

Adobe After Effects versions 16 and earlier have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to arbitrary code execution...

CVE-2019-7931

Adobe Premiere Pro CC versions 13.1.2 and earlier have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to arbitrary code execution...

CVE-2019-14969

Netwrix Auditor before 9.8 has insecure permissions on %PROGRAMDATA%\Netwrix Auditor\Logs\ActiveDirectory\ and sub-folders. In addition, the service Netwrix.ADA.StorageAuditService which writes to that directory does not perform proper impersonation, and thus the target file will have the same...

Advantech WebAccess HMI Designer suffers from dll hijacking vulnerability

Advantech WebAccess HMI Designer is software that creates complete solutions for all HMI products and HMI applications including the TPC/WebOP/UNO series. Advantech WebAccess HMI Designer suffers from a dll hijacking vulnerability that can be exploited by an attacker to load a malicious dll and...