2 matches found
CVE-2017-11158
Multiple untrusted search path vulnerabilities in the installer in Synology Cloud Station Drive before 4.2.5-4396 on Windows allow local attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse 1 shfolder.dll, 2 ntmarta.dll, 3 secur32.dll or 4 dwmapi.dll file in th...
CVE-2017-11158
CVE-2017-11158 affects Synology Cloud Station Drive on Windows (pre-4.2.5-4396). The issue is local DLL hijacking caused by untrusted search paths in the installer, enabling a local attacker to run arbitrary code by placing Trojan horses such as shfolder.dll, ntmarta.dll, secur32.dll, or dwmapi.d...