5 matches found
PT-2026-33184
Yubico libfido2 before 1.17.0, python-fido2 before 2.2.0, and yubikey-manager before 5.9.1 have an unintended DLL search path...
The vulnerability of the StorSvc storage service in the Windows operating system allows a hacker to escalate their privileges.
The vulnerability of the StorSvc storage service in the Windows operating system arises due to deficiencies in the mechanism for searching dynamic libraries. Exploiting this vulnerability can allow an attacker to increase their privileges by introducing a DLL library during software installation...
The vulnerability of the Fortinet FortiClient for Windows installer and the FortiClient Enterprise Management Server (EMS) allows a perpetrator to execute arbitrary code.
The vulnerability of the Fortinet FortiClient for Windows installer and the FortiClient Enterprise Management Server EMS is related to an uncontrolled DLL search process. Exploiting this vulnerability allows a attacker to execute arbitrary code using a specially crafted DLL library...
CVE-2021-4007
Rapid7 Insight Agent, versions 3.0.1 to 3.1.2.34, suffer from a local privilege escalation due to an uncontrolled DLL search path. Specifically, when Insight Agent versions 3.0.1 to 3.1.2.34 start, the Python interpreter attempts to load python3.dll at "C:\DLLs\python3.dll," which normally is...
GTK+ may insecurely load dynamic libraries
Overview GTK+ may use unsafe methods for determining how to load DLLs. GTK+ is a toolkit for developing applications with GUIs. GTK+ contains an issue with the DLL search path, which may lead to insecurely loading dynamic libraries. Naoto Katsumi of LAC Co., Ltd. reported this vulnerability to IP...