CVE-2021-22000

VMware Thinapp version 5.x prior to 5.2.10 contain a DLL hijacking vulnerability due to insecure loading of DLLs. A malicious actor with non-administrative privileges may exploit this vulnerability to elevate privileges to administrator level on the Windows operating system having VMware ThinApp...

EUVD-2021-9170

Malicious code in bioql PyPI...

VMware ThinApp DLL Hijacking

A few months ago I disclosed IBMR Db2R Windows client DLL Hijacking Vulnerability0day I found: https://seclists.org/fulldisclosure/2021/Feb/73 In that post I mentioned the vulnerability did not get fully patched. After I told IBM on hackerone that I disclosed it, hackerone asked me to delete the...

CVE-2021-22000

VMware Thinapp version 5.x prior to 5.2.10 contain a DLL hijacking vulnerability due to insecure loading of DLLs. A malicious actor with non-administrative privileges may exploit this vulnerability to elevate privileges to administrator level on the Windows operating system having VMware ThinApp...

CVE-2021-22000

VMware Thinapp version 5.x prior to 5.2.10 contain a DLL hijacking vulnerability due to insecure loading of DLLs. A malicious actor with non-administrative privileges may exploit this vulnerability to elevate privileges to administrator level on the Windows operating system having VMware ThinApp...

Design/Logic Flaw

VMware Thinapp version 5.x prior to 5.2.10 contain a DLL hijacking vulnerability due to insecure loading of DLLs. A malicious actor with non-administrative privileges may exploit this vulnerability to elevate privileges to administrator level on the Windows operating system having VMware ThinApp...

CVE-2021-22000

Summary: CVE-2021-22000 affects VMware ThinApp 5.x prior to 5.2.10, where DLL hijacking occurs due to insecure loading of DLLs. The vulnerability allows a non-administrator to gain administrator privileges on Windows systems running ThinApp. Affected component: VMware ThinApp (Windows) with vulne...

CVE-2021-22000

VMware Thinapp version 5.x prior to 5.2.10 contain a DLL hijacking vulnerability due to insecure loading of DLLs. A malicious actor with non-administrative privileges may exploit this vulnerability to elevate privileges to administrator level on the Windows operating system having VMware ThinApp...

VMware ThinApp update addresses a DLL hijacking vulnerability (CVE-2021-22000)

3. VMware ThinApp update addresses a DLL hijacking vulnerability CVE-2021-22000 VMware ThinApp contains a DLL hijacking vulnerability due to insecure loading of DLLs. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 6.8...

VMware Thinapp 代码问题漏洞

VMware Thinapp is a suite of application virtualization and portable application creators from Vmware USA that packages regular applications to make them portable. VMware Thinapp A code issue vulnerability exists that stems from VMware Thinapp versions prior to 5.2.10 contain a DLL hijacking...

Kaspersky AntiVirus - ThinApp Parser Stack Buffer Overflow

Kaspersky AntiVirus - ThinApp Parser Stack Buffer Overflow Source: https://code.google.com/p/google-security-research/issues/detail?id=518 A remotely exploitable stack buffer overflow in ThinApp container parsing. Kaspersky Antivirus I've tested version 15 and 16 and other products using the...

Kaspersky AntiVirus - ThinApp Parser Stack Buffer Overflow

Source: https://code.google.com/p/google-security-research/issues/detail?id=518 A remotely exploitable stack buffer overflow in ThinApp container parsing. Kaspersky Antivirus I've tested version 15 and 16 and other products using the Kaspersky Engine such as ZoneAlarm are affected. Proof of...