CVE-2017-10836

CVE-2017-10836 affects Optimal Guard (OPTiM) installers—versions 1.1.21 and earlier. The root cause is an untrusted/insecure DLL search path (CWE-427), allowing a Trojan horse DLL placed in a directory to be loaded and execute arbitrary code with the caller’s privileges. Documented impact: arbitr...