CVE-2018-1435

IBM Notes 8.5 and 9.0 is vulnerable to a DLL hijacking attack. A remote attacker could trick a user to double click a malicious executable in an attacker-controlled directory, which could result in code execution. IBM X-Force ID: 139563...

WinShot Untrustworthy Search Path Vulnerability

WinShot is a screenshot tool based on the Windows platform. An untrustworthy search path vulnerability exists in WinShot 1.53a and earlier versions. An attacker can exploit this vulnerability to gain privileges with the help of a malicious DLL in the directory...

CVE-2018-7716

PrivateVPN 2.0.31 for macOS suffers from a root privilege escalation vulnerability with its com.privat.vpn.helper privileged helper tool. This privileged helper tool implements an XPC service that allows arbitrary installed applications to connect and send messages. The XPC service extracts the...

CVE-2018-7716

PrivateVPN 2.0.31 for macOS suffers from a root privilege escalation vulnerability with its com.privat.vpn.helper privileged helper tool. This privileged helper tool implements an XPC service that allows arbitrary installed applications to connect and send messages. The XPC service extracts the...

CVE-2018-6218

A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking Module UMH could allow an attacker to run arbitrary code on a vulnerable system...

Sophos Tester Tool Arbitrary Code Execution Vulnerability

Sophos Tester Tool is a penetration testing tool from Sophos UK. A security vulnerability exists in Sophos Tester Tool version 3.2.0.7 Beta, which originates from the program's failure to detect DLLs, and can be exploited by an attacker to cause a denial of service and execute malicious code...

CVE-2018-6461

March Hare WINCVS before 2.8.01 build 6610, and CVS Suite before 2009R2 build 6610, contains an Insecure Library Loading vulnerability in the wincvs2.exe or wincvs.exe file, which may allow local users to gain privileges via a Trojan horse Python or TCL DLL file in the current working directory...

Damon Database Override Access Vulnerability

DM7 is a new-generation database product designed by Damon on the basis of summarizing the R&D and application experience of DM series products, absorbing the advantages of mainstream database products, and adopting JAVA-like virtual machine technology. Damon database has override access...

CVE-2018-6318

In Sophos Tester Tool 3.2.0.7 Beta, the driver loads in the context of the application used to test an exploit or ransomware the DLL using a payload that runs from NTDLL.DLL so, it's run in userland, but the driver doesn't perform any validation of this DLL not its signature, not its hash, etc.. ...

SUPERAntiSpyware Professional Trial Elevation of Privilege Vulnerability

SUPERAntiSpyware Professional Trial is a suite of antivirus tools from US-based Support.com that are primarily designed to scan for spyware. A security vulnerability exists in the SUPERAntiSpyware.exe file in SUPERAntiSpyware Professional Trial version 6.0.1254. An attacker can exploit this...

CVE-2017-17809

In Golden Frog VyprVPN before 2.15.0.5828 for macOS, the vyprvpnservice launch daemon has an unprotected XPC service that allows attackers to update the underlying OpenVPN configuration and the arguments passed to the OpenVPN binary when executed. An attacker can abuse this vulnerability by forci...

CVE-2017-17809

In Golden Frog VyprVPN before 2.15.0.5828 for macOS, the vyprvpnservice launch daemon has an unprotected XPC service that allows attackers to update the underlying OpenVPN configuration and the arguments passed to the OpenVPN binary when executed. An attacker can abuse this vulnerability by forci...

CVE-2017-17809

The CVE-2017-17809 entry affects Golden Frog VyprVPN for macOS prior to 2.15.0.5828. The vyprvpnservice launch daemon exposes an unprotected XPC service that lets attackers update the underlying OpenVPN configuration and the arguments passed to the OpenVPN binary. An attacker could abuse this to ...

DLL Hijacking Vulnerability in FOFA Client

FOFA is a cyberspace asset search engine launched by WhiteHatHub. It can help users quickly match cyber assets and speed up the follow-up process, such as vulnerability impact range analysis, application distribution statistics, application popularity ranking statistics. A DLL hijacking...

CVE-2017-17069

ActiveSetupN.exe in Amazon Audible for Windows before November 2017 allows attackers to execute arbitrary DLL code if ActiveSetupN.exe is launched from a directory where an attacker has already created a Trojan horse dwmapi.dll file...

The installer of Media Go and Music Center for PC may insecurely load Dynamic Link Libraries

Overview Media Go and Music Center for PC provided by Sony Group are file management tools. The installer of Media Go and Music Center for PC contain an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Eili Masami of Tachibana Lab. and Shun Suza...

Cisco Network Academy Packet Tracer software untrustworthy search path vulnerability

Cisco Network Academy Packet Tracer software is a set of visual network simulation software from Cisco USA. The software is able to simulate file commands, visualization and configuration of network devices, and simulate data transmission interactions. An untrustworthy search path vulnerability...

CVE-2017-10887

Untrusted search path vulnerability in BOOK WALKER for Windows Ver.1.2.9 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2017-12314

A vulnerability in the Cisco FindIT Network Discovery Utility could allow an authenticated, local attacker to perform a DLL preloading attack, potentially causing a partial impact to the device availability, confidentiality, and integrity, aka Insecure Library Loading. The vulnerability is due to...

BOOK WALKER Untrusted Search Path Vulnerability

BOOK WALKER for Windows is a set of Windows-based e-book software from BOOK WALKER Japan. An untrusted search path vulnerability exists in BOOK WALKER 1.2.9 and earlier versions for Windows. The vulnerability can be exploited by an attacker to gain privileges through a malicious DLL in the...