LOGICOOL CONNECTION UTILITY SOFTWARE Untrusted Search Path Vulnerability

LOGICOOL CONNECTION UTILITY SOFTWARE is a suite of software from the Swedish company LOGICOOL for restoring the connection of Logitech devices to non-Unifying wireless receivers. An untrusted search path vulnerability exists in LOGICOOL CONNECTION UTILITY SOFTWARE versions prior to 2.30.9, which...

Design/Logic Flaw

Untrusted search path vulnerability in LOGICOOL CONNECTION UTILITY SOFTWARE versions before 2.30.9 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2018-0621

Untrusted search path vulnerability in LOGICOOL CONNECTION UTILITY SOFTWARE versions before 2.30.9 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2018-0621

Untrusted search path vulnerability in LOGICOOL CONNECTION UTILITY SOFTWARE versions before 2.30.9 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2018-0621

CVE-2018-0621 affects LOGICOOL CONNECTION UTILITY SOFTWARE prior to 2.30.9. The issue is an untrusted search path (CWE-427) that can enable privilege escalation via a malicious DLL in an unspecified directory. CNVD-2019-19054 confirms the vulnerable versions and impact; JVN entries corroborate th...

CVE-2018-0621

Untrusted search path vulnerability in LOGICOOL CONNECTION UTILITY SOFTWARE versions before 2.30.9 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

JVN#52574492: The installers of multiple Logicool software programs may insecurely load Dynamic Link Libraries

The installers of multiple software programs provided by Logicool Co. Ltd contain an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries（CWE-427）. Impact Arbitrary code may be executed with the privilege of the user invoking the installer. Solution Use the...