PT-2026-24413

IBM Trusteer Rapport installer 3.5.2309.290 IBM Trusteer Rapport could allow a local attacker to execute arbitrary code on the system, caused by DLL uncontrolled search path element vulnerability. By placing a specially crafted file in a compromised folder, an attacker could exploit this...

PT-2022-25506 · Ibm · Ibm I Access Family

Name of the Vulnerable Software and Affected Versions: IBM i Access Family versions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.0 Description: The issue allows a local authenticated attacker to execute arbitrary code on the system due to a DLL search order hijacking vulnerability. An attacker...

McAfee Drive Encryption < 7.3.0 HF2 DLL Hijacking (SB10374)

The remote host is running a version of McAfee Drive Encryption prior to 7.3.0 HF2. It is, therefore, affected by a DLL search order hijacking vulnerability that allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder. Note that Nessus has not...

CVE-2021-31853

DLL Search Order Hijacking Vulnerability in McAfee Drive Encryption MDE prior to 7.3.0 HF2 7.3.0.183 allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder...

Spoofing

DLL Search Order Hijacking Vulnerability in McAfee Drive Encryption MDE prior to 7.3.0 HF2 7.3.0.183 allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder...

CVE-2021-31853 MDE DLL Search Order Hijacking vulnerability

DLL Search Order Hijacking Vulnerability in McAfee Drive Encryption MDE prior to 7.3.0 HF2 7.3.0.183 allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder...

CVE-2021-23879

Unquoted service path vulnerability in McAfee Endpoint Product Removal EPR Tool prior to 21.2 allows local administrators to execute arbitrary code, with higher-level privileges, via execution from a compromised folder. The tool did not enforce and protect the execution path. Local admin privileg...

CVE-2021-23879

Unquoted service path vulnerability in McAfee Endpoint Product Removal EPR Tool prior to 21.2 allows local administrators to execute arbitrary code, with higher-level privileges, via execution from a compromised folder. The tool did not enforce and protect the execution path. Local admin privileg...

CVE-2020-7316

Unquoted service path vulnerability in McAfee File and Removable Media Protection FRP prior to 5.3.0 allows local users to execute arbitrary code, with higher privileges, via execution and from a compromised folder. This issue may result in files not being encrypted when a policy is triggered...

Design/Logic Flaw

Unquoted service path vulnerability in McAfee File and Removable Media Protection FRP prior to 5.3.0 allows local users to execute arbitrary code, with higher privileges, via execution and from a compromised folder. This issue may result in files not being encrypted when a policy is triggered...

CVE-2020-7316 File and Removable Media Protection update fixes one vulnerability

Unquoted service path vulnerability in McAfee File and Removable Media Protection FRP prior to 5.3.0 allows local users to execute arbitrary code, with higher privileges, via execution and from a compromised folder. This issue may result in files not being encrypted when a policy is triggered...

CVE-2020-7316

CVE-2020-7316 maps to an Unquoted service path vulnerability in McAfee File and Removable Media Protection (FRP) prior to 5.3.0. A local attacker could run code with higher privileges by exploiting an unquoted service path and from a compromised folder; this may also cause files to avoid encrypti...

McAfee Agent Elevation of Privilege Vulnerability

McAfee Agent MA is a set of client components from McAfee, Inc. that provides secure communications between ePolicy Orchestrator antivirus management platform and managed products. An elevation of privilege vulnerability exists in McAfee Agent. The vulnerability stems from an incorrect programmat...

Spoofing

DLL Search Order Hijacking Vulnerability in the installer component of McAfee Host Intrusion Prevention System Host IPS for Windows prior to 8.0.0 Patch 15 Update allows attackers with local access to execute arbitrary code via execution from a compromised folder...

CVE-2020-7279 DLL search order hijacking in Host IPS

DLL Search Order Hijacking Vulnerability in the installer component of McAfee Host Intrusion Prevention System Host IPS for Windows prior to 8.0.0 Patch 15 Update allows attackers with local access to execute arbitrary code via execution from a compromised folder...

CVE-2019-3613

DLL Search Order Hijacking vulnerability in McAfee Agent MA prior to 5.6.4 allows attackers with local access to execute arbitrary code via execution from a compromised folder...

CVE-2020-7260

DLL Side Loading vulnerability in the installer for McAfee Application and Change Control MACC prior to 8.3 allows local users to execute arbitrary code via execution from a compromised folder...

CVE-2020-7260 MACC installer DLL side loading

DLL Side Loading vulnerability in the installer for McAfee Application and Change Control MACC prior to 8.3 allows local users to execute arbitrary code via execution from a compromised folder...

CVE-2020-7260

CVE-2020-7260 describes a DLL side-loading vulnerability in the installer for McAfee Application and Change Control (MACC) prior to version 8.3, enabling local users to run arbitrary code by executing from a compromised folder. The issue is rooted in DLL loading during installation, with impact l...

Spoofing

IBM SDK, Java Technology Edition Version 7.0.0.0 through 7.0.10.55, 7.1.0.0 through 7.1.4.55, and 8.0.0.0 through 8.0.6.0 could allow a local authenticated attacker to execute arbitrary code on the system, caused by DLL search order hijacking vulnerability in Microsoft Windows client. By placing ...