3 matches found
CVE-2022-25348
Untrusted search path vulnerability in AttacheCase ver.4.0.2.7 and earlier allows an attacker to gain privileges and execute arbitrary code via a Trojan horse DLL in an unspecified directory...
CVE-2022-25348
CVE-2022-25348 concerns AttacheCase (HiBARA) where an untrusted DLL search path allows a Trojan horse DLL to be loaded, enabling local privilege escalation and arbitrary code execution. Affected versions are AttacheCase 4.0.2.7 and earlier. The vulnerability stems from insecure DLL loading and se...
JVN#10140834: AttacheCase may insecurely load Dynamic Link Libraries
AttacheCase is an open source file encryption software provided by HiBARA Software. AttacheCase contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Impact Arbitrary code may be executed with the privilege to run the software. Solution...