287 matches found
Design/Logic Flaw
An issue was discovered in signmgr.dll 6.5.0.819 in Comodo Internet Security through 12.0. A DLL Preloading vulnerability allows an attacker to implant an unsigned DLL named iLog.dll in a partially unprotected product directory. This DLL is then loaded into a high-privileged service before the...
CVE-2019-18215
An issue was discovered in signmgr.dll 6.5.0.819 in Comodo Internet Security through 12.0. A DLL Preloading vulnerability allows an attacker to implant an unsigned DLL named iLog.dll in a partially unprotected product directory. This DLL is then loaded into a high-privileged service before the...
CVE-2019-18215
The CVE affects Comodo Internet Security (signmgr.dll 6.5.0.819 in versions up to 12.0). It describes a DLL preloading vulnerability where an unsigned iLog.dll can be planted in a partially unprotected product directory and loaded into a high-privileged service before the binary signature validat...
CVE-2019-5695
NVIDIA GeForce Experience prior to 3.20.1 and Windows GPU Display Driver all versions contains a vulnerability in the local service provider component in which an attacker with local system and privileged access can incorrectly load Windows system DLLs without validating the path or signature als...
Design/Logic Flaw
NVIDIA GeForce Experience prior to 3.20.1 and Windows GPU Display Driver all versions contains a vulnerability in the local service provider component in which an attacker with local system and privileged access can incorrectly load Windows system DLLs without validating the path or signature als...
CVE-2019-5695
The CVE-2019-5695 issue concerns NVIDIA GeForce Experience (pre-3.20.1) and Windows GPU Display Driver across all versions, where the local service provider component improperly loads Windows system DLLs without path/signature validation (a DLL preloading/binary planting flaw). This can enable a ...
CVE-2019-5695
NVIDIA GeForce Experience prior to 3.20.1 and Windows GPU Display Driver all versions contains a vulnerability in the local service provider component in which an attacker with local system and privileged access can incorrectly load Windows system DLLs without validating the path or signature als...
CVE-2019-5694
NVIDIA Windows GPU Display Driver, R390 driver version, contains a vulnerability in NVIDIA Control Panel in which it incorrectly loads Windows system DLLs without validating the path or signature also known as a binary planting or DLL preloading attack, which may lead to denial of service or...
Design/Logic Flaw
NVIDIA GeForce Experience, all versions prior to 3.20.0.118, contains a vulnerability when GameStream is enabled in which an attacker with local system access can load the Intel graphics driver DLLs without validating the path or signature also known as a binary planting or DLL preloading attack,...
Design/Logic Flaw
NVIDIA Windows GPU Display Driver, R390 driver version, contains a vulnerability in NVIDIA Control Panel in which it incorrectly loads Windows system DLLs without validating the path or signature also known as a binary planting or DLL preloading attack, which may lead to denial of service or...
CVE-2019-5694
CVE-2019-5694 affects NVIDIA Windows GPU Display Driver via the NVIDIA Control Panel loading Windows DLLs without path/signature validation (binary planting). Local attacker access required; impact includes denial of service or information disclosure with potential for code execution. From the pr...
CVE-2019-5694
NVIDIA Windows GPU Display Driver, R390 driver version, contains a vulnerability in NVIDIA Control Panel in which it incorrectly loads Windows system DLLs without validating the path or signature also known as a binary planting or DLL preloading attack, which may lead to denial of service or...
Security Bulletin: NVIDIA GeForce Experience - November 2019
NVIDIA has released a software security update for NVIDIA® GeForce Experience™. This update addresses issues that may lead to code execution, information disclosure, or denial of service. To protect your system, download and install this software update through the GeForce Experience Downloads...
AVG Antivirus (All Editions) < 19.8 DLL Preloading Vulnerability - Windows
AVG Antivirus is prone to a dll preloading vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:avg:anti-virus";...
Avast Antivirus (All Editions) < 19.8 DLL Preloading Vulnerability - Windows
Avast Antivirus is prone to a dll preloading vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:avast:antivirus";...
CVE-2019-17093
An issue was discovered in Avast antivirus before 19.8 and AVG antivirus before 19.8. A DLL Preloading vulnerability allows an attacker to implant %WINDIR%\system32\wbemcomn.dll, which is loaded into a protected-light process PPL and might bypass some of the self-defense mechanisms. This affects...
CVE-2019-17093
An issue was discovered in Avast antivirus before 19.8 and AVG antivirus before 19.8. A DLL Preloading vulnerability allows an attacker to implant %WINDIR%\system32\wbemcomn.dll, which is loaded into a protected-light process PPL and might bypass some of the self-defense mechanisms. This affects...
Authentication flaw
An issue was discovered in Avast antivirus before 19.8 and AVG antivirus before 19.8. A DLL Preloading vulnerability allows an attacker to implant %WINDIR%\system32\wbemcomn.dll, which is loaded into a protected-light process PPL and might bypass some of the self-defense mechanisms. This affects...
CVE-2019-17093
CVE-2019-17093 concerns Avast Antivirus (before 19.8) and AVG Antivirus (before 19.8). The issue is a DLL preloading vulnerability that enables an attacker to plant %WINDIR%\system32\wbemcomn.dll, which is then loaded into a Protected-Process Light (PPL) and may bypass some self-defense mechanism...
CVE-2019-17093
An issue was discovered in Avast antivirus before 19.8 and AVG antivirus before 19.8. A DLL Preloading vulnerability allows an attacker to implant %WINDIR%\system32\wbemcomn.dll, which is loaded into a protected-light process PPL and might bypass some of the self-defense mechanisms. This affects...