CVE-2023-4770

An uncontrolled search path element vulnerability has been found on 4D and 4D server Windows executables applications, affecting version 19 R8 100218. This vulnerability consists in a DLL hijacking by replacing x64 shfolder.dll in the installation path, causing an arbitrary code execution...

Exploit for Code Injection in Horsicq Xmachoviewer

CVE-2023-49313 A dylib injection vulnerability in XMachOViewer...

SanDisk Security Installer Security Vulnerability

Western Digital SanDisk Security Installer is a security installer from Western Digital. A security vulnerability exists in SanDisk Security Installer that stems from the presence of multiple DLL search order hijacking vulnerabilities that could allow an attacker with local access rights to execu...

Atera Agent Package Availability Security Vulnerability

Atera Agent Package Availability for Windows is an Atera agent package for Windows from Atera. A security vulnerability exists in Atera Agent Package Availability 0.14.0.0 and prior versions, which originates when Agent.Package.Availability.exe has SYSTEM privileges and is susceptible to DLL...

Acronis Agent Protect Code Issue Vulnerability

Acronis Cyber Protect is an all-in-one cyber protection solution for business and enterprise from Acronis Singapore. It combines backup, anti-malware, network security and endpoint management features e.g. vulnerability assessment, URL filtering, patch management, etc.. A code issue vulnerability...

PT-2023-25369 · Ibm · Ibm Storage Protect For Virtual Environments +1

Name of the Vulnerable Software and Affected Versions: IBM Spectrum Protect Client and IBM Storage Protect for Virtual Environments versions 8.1.0.0 through 8.1.19.0 Description: The issue allows a local user to execute arbitrary code on the system using a specially crafted file, caused by a DLL...

SAMSUNG Memory Card & UFD Authentication Utility PC Software Code Issue Vulnerability

SAMSUNG Memory Card & UFD Authentication Utility PC Software is a memory card and UFD authentication utility program from SAMSUNG Korea. A security vulnerability exists in SAMSUNG Memory Card & UFD Authentication Utility PC Software prior to version 1.0.1, which stems from a DLL hijacking...

CVE-2021-41544

A vulnerability has been identified in Siemens Software Center All versions V3.0. A DLL Hijacking vulnerability could allow a local attacker to execute code with elevated privileges by placing a malicious DLL in one of the directories on the DLL search path...

PT-2023-5571 · Siemens · Siemens Software Center

Name of the Vulnerable Software and Affected Versions: Siemens Software Center versions prior to V3.0 Description: A DLL Hijacking issue could allow a local attacker to execute code with elevated privileges by placing a malicious DLL in one of the directories on the DLL search path. This is relat...

Winitor PEStudio Code Issue Vulnerability

Winitor PEStudio is an application from Winitor Inc. for discovering executables to simplify and speed up initial malware evaluation. A code issue vulnerability exists in Winitor PEStudio version v.9.52, which stems from the presence of a DLL hijacking vulnerability that can be exploited by an...

CVE-2023-37849

A DLL hijacking vulnerability in Panda Security VPN for Windows prior to version v15.14.8 allows attackers to execute arbitrary code via placing a crafted DLL file in the same directory as PANDAVPN.exe...

Panda Security VPN 代码问题漏洞

Panda Security VPN is a VPN software from Panda Security. A security vulnerability exists in versions prior to Panda Security VPN v15.14.8 that stems from the presence of a DLL hijacking vulnerability that allows attackers to execute arbitrary code by placing a crafted DLL file in the same...

CVE-2023-28080

PowerPath for Windows, versions 7.0, 7.1 & 7.2 contains DLL Hijacking Vulnerabilities. A regular user non-admin can exploit these issues to potentially escalate privileges and execute arbitrary code in the context of NT AUTHORITY\SYSTEM...

Trend Micro Security 代码问题漏洞

Trend Micro Security is an antivirus software from Trend Micro. A security vulnerability exists in Trend Micro Security that stems from the presence of a DLL hijacking vulnerability that could result in unsafe loading of dynamic link libraries. Affected products and versions: Trend Micro Security...

UBUNTU-CVE-2023-28260

.NET DLL Hijacking Remote Code Execution Vulnerability...

PT-2023-15620 · Acuant · Acuant Acufill Sdk

Name of the Vulnerable Software and Affected Versions: Acuant AcuFill SDK versions prior to 10.22.02.03 Description: An issue was discovered in the Acuant AcuFill SDK. During SDK repair, certutil.exe is called by the Acuant installer to repair certificates. This call is vulnerable to DLL hijackin...

Researchers Shed Light on CatB Ransomware's Evasion Techniques

The threat actors behind the CatB ransomware operation have been observed using a technique called DLL search order hijacking to evade detection and launch the payload. CatB, also referred to as CatB99 and Baxtoy, emerged late last year and is said to be an "evolution or direct rebrand" of anothe...

SUSE CVE-2010-3976

Untrusted search path vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a fi...

SUSE CVE-2016-6167

Multiple untrusted search path vulnerabilities in Putty beta 0.67 allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse 1 UxTheme.dll or 2 ntmarta.dll file in the current working directory...

SUSE CVE-2017-1000010

Audacity 2.1.2 through 2.3.2 is vulnerable to Dll HIjacking in the avformat-55.dll resulting arbitrary code execution...