3 matches found
Lhaz Installer Untrusted Search Path Vulnerability
Lhaz is a compression/decompression tool.Installer is one of the installers. An untrusted search path vulnerability exists in the installer in Lhaz 2.4.0 and earlier versions. An attacker can exploit this vulnerability to gain privileges with a malicious DLL in a directory...
CVE-2017-2246
Untrusted search path vulnerability in Installer of Lhaz version 2.4.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...
CVE-2017-2248
Untrusted search path vulnerability in Installer of Lhaz+ version 3.4.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...