EUVD-2017-2490

Malware in sbrugna...

EUVD-2017-2489

Malware in sbrugna...

DocuWorks Detection (Windows SMB Login)

Detects the installed version of DocuWorks. The script logs in via smb, searches for SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

DocuWorks Viewer Light Code Execution Vulnerability - Windows

DocuWorks Viewer Light is prone to a code execution vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

DocuWorks Multiple Code Execution Vulnerabilities - Windows

DocuWorks is prone to multiple code execution vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Design/Logic Flaw

Untrusted search path vulnerability in Installers for DocuWorks 8.0.7 and earlier and DocuWorks Viewer Light published in Jul 2017 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2017-10848

Untrusted search path vulnerability in Installers for DocuWorks 8.0.7 and earlier and DocuWorks Viewer Light published in Jul 2017 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2017-10849

Untrusted search path vulnerability in Self-extracting document generated by DocuWorks 8.0.7 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2017-10848

Untrusted search path vulnerability in Installers for DocuWorks 8.0.7 and earlier and DocuWorks Viewer Light published in Jul 2017 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

Design/Logic Flaw

Untrusted search path vulnerability in Self-extracting document generated by DocuWorks 8.0.7 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2017-10848

DocuWorks and DocuWorks Viewer Light are affected by an untrusted search path vulnerability (CWE-427) in Installers for DocuWorks 8.0.7 and earlier and DocuWorks Viewer Light vices published in July 2017 and earlier. An attacker could gain privilege escalation by placing a Trojan horse DLL in an ...

CVE-2017-10849

CVE-2017-10849 affects DocuWorks self-extracting documents generated by DocuWorks 8.0.7 and earlier. The underlying issue is an untrusted DLL search path that can allow a Trojan horse DLL placed in an unspecified directory to be loaded, enabling privilege escalation. The vulnerability is tied to ...

CVE-2017-10848

Untrusted search path vulnerability in Installers for DocuWorks 8.0.7 and earlier and DocuWorks Viewer Light published in Jul 2017 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2017-10849

Untrusted search path vulnerability in Self-extracting document generated by DocuWorks 8.0.7 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

Multiple Fuji Xerox products may insecurely load Dynamic Link Libraries

Overview Installers of multiple products, and DocuWorks self-extracting documents provided by Fuji Xerox Co.,Ltd. contain an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Eili Masami of Tachibana Lab. reported this vulnerability to IPA...

Fuji Xerox DocuWorks and DocuWorks Viewer Light Untrusted Search Path Vulnerability

Fuji Xerox DocuWorks and DocuWorks Viewer Light are both products of Fuji Xerox Japan.DocuWorks is a document management solution.DocuWorks Viewer Light is a document reader. An untrusted search path vulnerability exists in Fuji Xerox DocuWorks versions 8.0.7 and earlier and DocuWorks Viewer Ligh...

Fuji Xerox DocuWorks Search Path Handling Elevation of Privilege Vulnerability

Fuji Xerox DocuWorks is a document management solution. A security vulnerability in the Self-extracting document processing search path generated by Fuji Xerox DocuWorks allows remote attackers to exploit the vulnerability by submitting a specially crafted DLL, which can be tricked into being...

JVN#09769017: Multiple Fuji Xerox products may insecurely load Dynamic Link Libraries

Installers of multiple products, and DocuWorks self-extracting documents provided by Fuji Xerox Co.,Ltd. contain an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Impact Arbitrary code may be executed with the privilege of the administrative...