EUVD-2017-11470

Malware in sbrugna...

Design/Logic Flaw

Untrusted search path vulnerability in NFC Port Software remover Ver.1.3.0.1 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2017-2286

Untrusted search path vulnerability in NFC Port Software Version 5.5.0.6 and earlier for RC-S310, RC-S320, RC-S330, RC-S370, RC-S380, RC-S380/S, NFC Port Software Version 5.3.6.7 and earlier for RC-S320, RC-S310/J1C, RC-S310/ED4C, PC/SC Activator for Type B Ver.1.2.1.0 and earlier, SFCard Viewer ...

CVE-2017-2287

Untrusted search path vulnerability in NFC Port Software remover Ver.1.3.0.1 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2017-2287

Untrusted search path vulnerability in NFC Port Software remover Ver.1.3.0.1 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

Design/Logic Flaw

Untrusted search path vulnerability in NFC Port Software Version 5.5.0.6 and earlier for RC-S310, RC-S320, RC-S330, RC-S370, RC-S380, RC-S380/S, NFC Port Software Version 5.3.6.7 and earlier for RC-S320, RC-S310/J1C, RC-S310/ED4C, PC/SC Activator for Type B Ver.1.2.1.0 and earlier, SFCard Viewer ...

CVE-2017-2286

CVE-2017-2286 affects Sony PaSoRi/NFC Port Software and related utilities (e.g., NFC Port Software 5.5.0.6 and earlier; 5.3.6.7 and earlier; PC/SC Activator for Type B 1.2.1.0 and earlier; SFCard Viewer; NFC Net Installer). The vulnerability is an untrusted search path that allows an attacker to ...

CVE-2017-2286

Untrusted search path vulnerability in NFC Port Software Version 5.5.0.6 and earlier for RC-S310, RC-S320, RC-S330, RC-S370, RC-S380, RC-S380/S, NFC Port Software Version 5.3.6.7 and earlier for RC-S320, RC-S310/J1C, RC-S310/ED4C, PC/SC Activator for Type B Ver.1.2.1.0 and earlier, SFCard Viewer ...

CVE-2017-2287

CVE-2017-2287 affects Sony’s NFC Port Software remover (Ver. 1.3.0.1 and earlier). The issue is an insecure DLL search path (CWE-427) in the DLL loading process, allowing arbitrary code execution with the user’s privileges if exploited. Affected component: NFC Port Software remover executable; ro...

JVN#33797604: NFC Port Software remover may insecurely load Dynamic Link Libraries

NFC Port Software remover provided by Sony Corporation is an application to remove NFC Port Software. NFC Port Software remover contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Impact Arbitrary code may be executed with the privilege...

JVN#16136413: Installers of Sony PaSoRi related software may insecurely load Dynamic Link Libraries

PaSoRi provided by Sony Corporation is contactless IC card reader/writer. Installers of PaSoRi driver and other related software for Windows contain an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Impact Arbitrary code may be executed with t...