CVE-2017-2211

CVE-2017-2211 affects PatchJGD (Hyoko) installer PatchJGDh101.EXE 1.0.1. The issue is an untrusted search path that can lead to Trojan horse DLL loading, allowing privilege elevation. Impact described as arbitrary code execution with user privileges when invoking the installer. The problem is tie...

CVE-2017-2210

PatchJGD installer (PatchJGD101.EXE, v1.0.1) is affected by an untrusted DLL search path (CWE-427) vulnerability, enabling privilege escalation via a Trojan DLL in an attacker-controlled directory. The issue affects the installer supplied by GSI; attackers could gain the invoking user’s privilege...