CVE-2021-31840 DLL preload vulnerability in McAfee Agent for Windows

A vulnerability in the preloading mechanism of specific dynamic link libraries in McAfee Agent for Windows prior to 5.7.3 could allow an authenticated, local attacker to perform a DLL preloading attack with unsigned DLLs. To exploit this vulnerability, the attacker would need to have valid...

McAfee Agent代码问题漏洞

The McAfee McAfee Agent MA is a set of client components from McAfee, Inc. that provides secure communications between ePolicy Orchestrator the antivirus management platform and managed products. A security vulnerability exists in McAfee Agent in versions prior to 5.7.3. The vulnerability stems...

Monero: Misconfiguration in build environment allows DLL preloading attack

Summary: monero-wallet-gui.exe tries to dynamically load some dynamic link librariesDLL which are not present in the applications directory, so LoadLibraryA system-call will search other directories such as Windows root and %PATH% for them. An attacker can gain arbitrary code execution if he/she...

HPSBHF03665 rev. 3 - Realtek Audio Driver Security Update

Potential Security Impact Escalation of Privilege, Arbitrary Code Execution Source: HP, HP Product Security Response Team PSRT VULNERABILITY SUMMARY HP has been notified of a potential vulnerability with the Realtek High Definition Audio Driver for Windows, which may lead to DLL preloading and...

Realtek Audio Driver Vulnerability - Lenovo Support US

Lenovo Security Advisory: LEN-30506 Potential Impact: DLL preloading and potential abuses Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2019-19705 Summary Description: Realtek has released a software security update for the Realtek Audio Drivers for Windows. This update...

Realtek Audio Driver Vulnerability - Lenovo Support US

No description provided...

CVE-2017-12580

An issue was discovered in IDM UltraEdit through 24.10.0.32. To exploit the vulnerability, on unpatched Windows systems, an attacker could include in the same directory as the affected executable a DLL using the name of a Windows DLL. This DLL must be preloaded by the executable for example,...

CVE-2017-12580

An issue was discovered in IDM UltraEdit through 24.10.0.32. To exploit the vulnerability, on unpatched Windows systems, an attacker could include in the same directory as the affected executable a DLL using the name of a Windows DLL. This DLL must be preloaded by the executable for example,...

PT-2020-10226 · Realtek +2 · Realtek Audio Driver +2

Name of the Vulnerable Software and Affected Versions: Realtek Audio Drivers for Windows versions prior to 6.0.8882.1 Realtek Audio Drivers for Windows versions prior to 6.0.8907.1 Description: The issue concerns the mishandling of DLL preloading by Realtek Audio Drivers for Windows, as used in...

CVE-2016-5311

A Privilege Escalation vulnerability exists in Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Endpoint Protection Small Business Edition Cloud, and Endpoint Protection Cloud Client due to a DLL-preloadin...

Privilege escalation

A Privilege Escalation vulnerability exists in Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Endpoint Protection Small Business Edition Cloud, and Endpoint Protection Cloud Client due to a DLL-preloadin...

CVE-2016-5311

A Privilege Escalation vulnerability exists in Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Endpoint Protection Small Business Edition Cloud, and Endpoint Protection Cloud Client due to a DLL-preloadin...

CVE-2016-5311

CVE-2016-5311 describes a local privilege-escalation in multiple Symantec Norton product lines (Antivirus, Security, Internet Security, 360, Endpoint Protection, etc.) caused by DLL preloading with inadequate path restrictions. The underlying issue is improper DLL search/path handling, allowing a...

CVE-2019-7365

DLL preloading vulnerability in Autodesk Desktop Application versions 7.0.16.29 and earlier. An attacker may trick a user into downloading a malicious DLL file into the working directory, which may then leverage a DLL preloading vulnerability and execute code on the system...

CVE-2019-7365

DLL preloading vulnerability in Autodesk Desktop Application versions 7.0.16.29 and earlier. An attacker may trick a user into downloading a malicious DLL file into the working directory, which may then leverage a DLL preloading vulnerability and execute code on the system...

Design/Logic Flaw

DLL preloading vulnerability in Autodesk Desktop Application versions 7.0.16.29 and earlier. An attacker may trick a user into downloading a malicious DLL file into the working directory, which may then leverage a DLL preloading vulnerability and execute code on the system...

CVE-2019-7365

Autodesk Desktop Application (versions ≤ 7.0.16.29) is affected by a DLL preloading vulnerability. The issue arises when an attacker persuades a user to place a malicious DLL in the working directory, enabling DLL preloading to execute code on the application host. Root cause is the DLL search/lo...

CVE-2019-7365

DLL preloading vulnerability in Autodesk Desktop Application versions 7.0.16.29 and earlier. An attacker may trick a user into downloading a malicious DLL file into the working directory, which may then leverage a DLL preloading vulnerability and execute code on the system...

Comodo Internet Security DLL Preload Vulnerability

Comodo Internet Security CIS is an Internet security suite that includes an antivirus program, personal firewall, sandbox, and host-based intrusion prevention system HIPS. A DLL preloading vulnerability in signmgr.dll 6.5.0.819 in Comodo Internet Security 12.0 and earlier can be exploited to bypa...

CVE-2019-18215

An issue was discovered in signmgr.dll 6.5.0.819 in Comodo Internet Security through 12.0. A DLL Preloading vulnerability allows an attacker to implant an unsigned DLL named iLog.dll in a partially unprotected product directory. This DLL is then loaded into a high-privileged service before the...