CVE-2017-5236
Rapid7 AppSpider Pro installers prior to version 6.14.060 are affected by a DLL preloading vulnerability. The installer can load a malicious DLL from its current working directory, enabling tampering during installation. CNVD-2017-10390 confirms this flaw; CVE-2017-5236 notes the affected pre-6.1...