Описание
Untrusted search path vulnerability in Hamster Free ZIP Archiver 2.0.1.7 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the current working directory.
Комментарий
<a href = http://cwe.mitre.org/data/definitions/426.html> CWE-426: Untrusted Search Path
Ссылки
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:hamstersoft:hamster_free_zip_archiver:2.0.1.7:*:*:*:*:*:*:*
EPSS
Процентиль: 26%
0.00092
Низкий
6.9 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Untrusted search path vulnerability in Hamster Free ZIP Archiver 2.0.1.7 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the current working directory.
EPSS
Процентиль: 26%
0.00092
Низкий
6.9 Medium
CVSS2
Дефекты
NVD-CWE-Other