CVE-2018-10027
ESTsoft ALZip (Windows) before version 10.76 is affected. Local attackers can execute arbitrary code by placing a malicious DLL in specific ALZip directories (%PROGRAMFILES%\ESTsoft\ALZip\Formats, %PROGRAMFILES%\ESTsoft\ALZip\Coders, and their 32‑bit equivalents) and installing it. Root cause is ...