5 matches found
CVE-2023-29080
Potential privilege escalation vulnerability in Revenera InstallShield versions 2022 R2 and 2021 R2 due to adding InstallScript custom action to a Basic MSI or InstallScript MSI project extracting few binaries to a predefined writable folder during installation time. The standard user account has...
CVE-2023-29080
Potential privilege escalation vulnerability in Revenera InstallShield versions 2022 R2 and 2021 R2 due to adding InstallScript custom action to a Basic MSI or InstallScript MSI project extracting few binaries to a predefined writable folder during installation time. The standard user account has...
CVE-2023-29080 Privilege escalation in InstallShield
Potential privilege escalation vulnerability in Revenera InstallShield versions 2022 R2 and 2021 R2 due to adding InstallScript custom action to a Basic MSI or InstallScript MSI project extracting few binaries to a predefined writable folder during installation time. The standard user account has...
CVE-2023-29080 Privilege escalation in InstallShield
Potential privilege escalation vulnerability in Revenera InstallShield versions 2022 R2 and 2021 R2 due to adding InstallScript custom action to a Basic MSI or InstallScript MSI project extracting few binaries to a predefined writable folder during installation time. The standard user account has...
CVE-2023-29080
CVE-2023-29080 concerns Revenera InstallShield (versions 2021 R2 and 2022 R2). A DLL hijacking vulnerability arises from an InstallScript custom action that extracts binaries to a predefined writable folder during installation. With standard user write access to these files/folders, an attacker c...