CVE-2017-10831
The CVE concerns The CRCA user’s Software (the Ministry of Justice electronic authentication system). A vulnerability in the installer creates an untrusted DLL search path (CWE-427), allowing a remote attacker to execute arbitrary code with the privileges of the user invoking the installer. Affec...