CVE-2018-16176
The CVE-2018-16176 entry concerns the Japan Atomic Energy Agency’s Mapping Tool installer (versions 2.0.1.6 and 2.0.1.7). The root cause is an insecure DLL search path in the installer, enabling a Trojan horse DLL to be loaded from an unspecified directory. This may allow arbitrary code execution...