CVE-2010-5210

Untrusted search path vulnerability in Sorax Reader 2.0.3129.70 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .pdf file. NOTE: some of these details are obtained from third party informatio...

CVE-2010-5219

Untrusted search path vulnerability in SmartFTP 4.0.1140.0 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .txt, .html, or .mpg file. NOTE: some of these details are obtained from third party...

CVE-2010-5244

Untrusted search path vulnerability in SiSoftware Sandra 2010 Lite 2010.7.16.52 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .sis file. NOTE: some of these details are obtained from third...

SUSE CVE-2010-3131

Untrusted search path vulnerability in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 on Windows XP allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via...

dll hijacking vulnerability exists in state god dwmapi

Nanjing New Dixon Software Technology Co., Ltd. is a company mainly engaged in computer software and hardware technology development, sales, installation, technical consulting, technical services; computer system integration; network engineering and other projects. There is a dll hijacking...

Format Factory DLL Hijacking Vulnerability

Format Factory is a format conversion tool from the Chinese company Format Factory Network Format Factory Network. The program supports converting various types of audio, video and image files to the target format files. Format Factory version 4.1.0 has a DLL hijacking vulnerability in the...

CVE-2018-6766

Swisscom TVMediaHelper 1.1.0.50 contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system. This vulnerability exists due to the way .dll files are loaded. It allows an attacker to load a .dll of the attacker's choosing that coul...

Synology Photo Station Uploader Arbitrary Code Execution Vulnerability

Synology Photo Station Uploader is a suite of applications that allow you to mass upload photos and videos to Photo Station. An arbitrary code execution vulnerability exists in the Synology Photo Station Uploader installer, which can be exploited by a local attacker to execute arbitrary code and...

Multiple untrustworthy search path vulnerabilities in Synology Assistant

Synology Assistant is a Synology DiskStation LAN installation and management assistant. Multiple untrusted search path vulnerabilities in the Synology Assistant's installer can be exploited by a local attacker to execute arbitrary code or perform DLL hijacking via a Trojan horse in the current...

CVE-2017-11160

Multiple untrusted search path vulnerabilities in installer in Synology Assistant before 6.1-15163 on Windows allows local attackers to execute arbitrary code and conduct DLL hijacking attack via a Trojan horse 1 shfolder.dll, 2 ntmarta.dll, 3 secur32.dll or 4 dwmapi.dll file in the current worki...

Sandboxie installer DLL hijacking vulnerability

Sandboxie is a virtualization software from the American company Sandboxie Holdings. The software supports running other applications in an isolated space and prevents programs from making changes to the system.Sandboxie installer is an installer for Sandboxie. A DLL hijacking vulnerability exist...

CVE-2017-12480

Sandboxie installer 5071703 has a DLL Hijacking or Unsafe DLL Loading Vulnerability via a Trojan horse dwmapi.dll or profapi.dll file in an AppData\Local\Temp directory...

CVE-2017-12414

Format Factory 4.1.0 has a DLL Hijacking Vulnerability because an untrusted search path is used for msimg32.dll, WindowsCodecs.dll, and dwmapi.dll...

InternetSoft FTP Commander Untrusted Search Path Vulnerability

InternetSoft FTP Commander is a Windows-based FTP client developed by InternetSoft. A security vulnerability exists in InternetSoft FTP Commander 8.02 and earlier versions. The vulnerability can be exploited by an attacker to hijack a DLL and execute code via a malicious dwmapi.dll file...

Speak Aloud DLL Hijacking Exploit (dwmapi.dll)

Exploit for windows platform in category local exploits ============================================== Speak Aloud DLL Hijacking Exploit dwmapi.dll ============================================== || || | || o,7 || . o7 || 4||| ow, : / /...

CVE-2010-3190

Untrusted search path vulnerability in the Microsoft Foundation Class MFC Library in Microsoft Visual Studio .NET 2003 SP1; Visual Studio 2005 SP1, 2008 SP1, and 2010; Visual C++ 2005 SP1, 2008 SP1, and 2010; and Exchange Server 2010 Service Pack 3, 2013, and 2013 allows local users to gain...