Format Factory DLL Hijacking Vulnerability

Format Factory is a format conversion tool from the Chinese company Format Factory Network Format Factory Network. The program supports converting various types of audio, video and image files to the target format files. Format Factory version 4.1.0 has a DLL hijacking vulnerability in the...

CVE-2018-6766

Swisscom TVMediaHelper 1.1.0.50 contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system. This vulnerability exists due to the way .dll files are loaded. It allows an attacker to load a .dll of the attacker's choosing that coul...

Synology Photo Station Uploader Arbitrary Code Execution Vulnerability

Synology Photo Station Uploader is a suite of applications that allow you to mass upload photos and videos to Photo Station. An arbitrary code execution vulnerability exists in the Synology Photo Station Uploader installer, which can be exploited by a local attacker to execute arbitrary code and...

InternetSoft FTP Commander Untrusted Search Path Vulnerability

InternetSoft FTP Commander is a Windows-based FTP client developed by InternetSoft. A security vulnerability exists in InternetSoft FTP Commander 8.02 and earlier versions. The vulnerability can be exploited by an attacker to hijack a DLL and execute code via a malicious dwmapi.dll file...