CVE-2026-2516

A vulnerability was identified in Unidocs ezPDF DRM Reader and ezPDF Reader 2.0/3.0.0.4. This affects an unknown part in the library SHFOLDER.dll. Such manipulation leads to uncontrolled search path. The attack needs to be performed locally. Attacks of this nature are highly complex. It is...

PT-2026-8237

Name of the Vulnerable Software and Affected Versions Unidocs ezPDF DRM Reader and ezPDF Reader versions 2.0 and 3.0.0.4 Description A security issue exists in Unidocs ezPDF DRM Reader and ezPDF Reader. The problem is related to an uncontrolled search path within the SHFOLDER.dll library. This...

CVE-2023-1745

A vulnerability, which was classified as problematic, has been found in KMPlayer 4.2.2.73. This issue affects some unknown processing in the library SHFOLDER.dll. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The exploit has been disclosed to the public a...

PT-2023-30574 · 4D · 4D

Name of the Vulnerable Software and Affected Versions: 4D versions 19 R8 100218 Description: An uncontrolled search path element vulnerability has been found in 4D and 4D server Windows executables applications. This vulnerability consists of a DLL hijacking by replacing x64 shfolder.dll in the...

CVE-2023-1745

A vulnerability, which was classified as problematic, has been found in KMPlayer 4.2.2.73. This issue affects some unknown processing in the library SHFOLDER.dll. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The exploit has been disclosed to the public a...

Design/Logic Flaw

A vulnerability, which was classified as problematic, has been found in KMPlayer 4.2.2.73. This issue affects some unknown processing in the library SHFOLDER.dll. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The exploit has been disclosed to the public a...

CVE-2023-1745

CVE-2023-1745 (KMPlayer 4.2.2.73) involves an issue in the SHFOLDER.dll component that enables an uncontrolled search path due to a manipulation in processing. This vulnerability requires local access to exploit and has been publicly disclosed. Affected software is KMPlayer, with the root cause d...

CVE-2023-1745 KMPlayer SHFOLDER.dll uncontrolled search path

A vulnerability, which was classified as problematic, has been found in KMPlayer 4.2.2.73. This issue affects some unknown processing in the library SHFOLDER.dll. The manipulation leads to uncontrolled search path. Attacking locally is a requirement. The exploit has been disclosed to the public a...

PT-2023-17210 · Mplayer +1 · Mplayer +1

Name of the Vulnerable Software and Affected Versions: KMPlayer version 4.2.2.73 Description: A problematic issue has been found in the library SHFOLDER.dll, affecting some unknown processing. The manipulation leads to an uncontrolled search path. This issue requires local attacking to be...

Fast CAD is vulnerable to dll hijacking

Quick CAD is a free CAD viewing software. A dll hijacking vulnerability exists in Quick CAD. This vulnerability can be exploited to execute arbitrary code by loading the shfolder.dll file in the installation file directory during installation...

VMware Workstation 15.1.0 - DLL Hijacking

VMware Workstation 15.1.0 - DLL Hijacking --------------------------------------------------------- Title: VMware Workstation DLL hijacking DLLIMPORT void SHGetFolderPathW MessageBox0, "s1kr10s", "VMWare-Poc", MBICONINFORMATION; exit0; --------------------------...

Design/Logic Flaw

Multiple untrusted search path vulnerabilities in the installer in Synology Cloud Station Drive before 4.2.5-4396 on Windows allow local attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse 1 shfolder.dll, 2 ntmarta.dll, 3 secur32.dll or 4 dwmapi.dll file in th...

Design/Logic Flaw

Multiple untrusted search path vulnerabilities in installer in Synology Photo Station Uploader before 1.4.2-084 on Windows allows local attackers to execute arbitrary code and conduct DLL hijacking attack via a Trojan horse 1 shfolder.dll, 2 ntmarta.dll, 3 secur32.dll or 4 dwmapi.dll file in the...

Comodo Anti-Virus - 'SHFolder.dll' Local Privilege Escalation

...... ,;''''''''''''''''';, .;''''''''''''''''''''''''''', :''''''''+';:,..,:;'''''''''': ,;'''''';,. ,;'''''';: :'''''',. ,'''''';. ;+''+': ,; ,''''';. ;'''';. .:;' . ;'''''. :+'''; ,:+'' ';;',''; :''''; .''''; ,';' '':' ';,''',' :''' .'' :'''', ;'''' ;'' :+. ;';, ';:' '''',;:+ '', ;'''' .''''...

Comodo Anti-Virus - SHFolder.dll Local Privilege Escalation

Comodo Anti-Virus - SHFolder.dll Local Privilege Escalation ...... ,;''''''''''''''''';, .;''''''''''''''''''''''''''', :''''''''+';:,..,:;'''''''''': ,;'''''';,. ,;'''''';: :'''''',. ,'''''';. ;+''+': ,; ,''''';. ;'''';. .:;' . ;'''''. :+'''; ,:+'' ';;',''; :''''; .''''; ,';' '':' ';,''',' :'''...

Comodo Anti-Virus - SHFolder.dll Local Privilege Elevation Exploit

Exploit for windows platform in category local exploits SHFolder.DLL Local Privilege Elevation Exploit for Comodo Anti-Virus GeekBuddy Component by @LaughingMantis Greg Linares Since it took 146 days to fix a DLL Hijack issue I decided to drop this PoC: Technical Geeky Stuff GeekBuddy stores...

μTorrent (uTorrent) 2.0.3 - DLL Hijacking

Title: uTorrent =2.0.3 Dll Hijacking Local Exploits By: DrIDE Tested: Windows 7RC Note: These are additional DLL's with unsafe Load Paths Reference: http://www.exploit-db.com/exploits/14726/ If the payload .DLL file is renamed to any of these files and placed in the utorrent.exe directory, the...