Lucene search
K

4 matches found

NVD
NVD
added 2019/02/13 6:29 p.m.23 views

CVE-2018-16189

Untrusted search path vulnerability in Self-Extracting Archives created by UNLHA32.DLL prior to Ver 3.00 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.8CVSS7.7AI score0.00944EPSS
Exploits0References2
CVE
CVE
added 2019/02/13 6:0 p.m.68 views

CVE-2018-16189

The CVE-2018-16189 issue affects UNLHA32.DLL Self-Extracting Archives (Win32) prior to Ver 3.00, where the DLL search path flaw may allow arbitrary code execution via a Trojan horse DLL in the same directory. The vulnerability is caused by insecure DLL loading (CWE-427) and can enable code execut...

7.8CVSS7.7AI score0.00944EPSS
Exploits0References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2019/01/31 12:0 a.m.172 views

JVN#83826673: The installers of UNLHA32.DLL, UNARJ32.DLL and LHMelting may insecurely load Dynamic Link Libraries

The installers of UNLHA32.DLL, UNARJ32.DLL and LHMelting provided by Micco use the old version of Self-Extracting Archives created by UNLHA32.DLL. They contain an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427, CVE-2018-16189. Impact Arbitrary...

7.8CVSS7.5AI score0.00944EPSS
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2019/01/31 12:0 a.m.165 views

JVN#52168232: UNLHA32.DLL, UNARJ32.DLL, LHMelting and LMLzh32.DLL may insecurely load Dynamic Link Libraries

UNLHA32.DLL, UNARJ32.DLL, LHMelting and LMLzh32.DLL provided by Micco contain vulnerabilities listed below. Self-Extracting Archives created by UNLHA32.DLL may insecurely load Dynamic Link Libraries CWE-427 - CVE-2018-16189 Version| Vector| Score ---|---|--- CVSS v3|...

7.8CVSS7.9AI score0.00944EPSS
Exploits0
Rows per page
Query Builder