CVE-2017-11158

Name of the Vulnerable Software and Affected Versions Synology Cloud Station Drive versions prior to 4.2.5-4396

Description The issue concerns untrusted search path vulnerabilities in the installer of Synology Cloud Station Drive on Windows. These vulnerabilities allow local attackers to execute arbitrary code and conduct DLL hijacking attacks by placing a Trojan horse file, such as shfolder.dll, ntmarta.dll, secur32.dll, or dwmapi.dll, in the current working directory.

Recommendations For versions prior to 4.2.5-4396, update to version 4.2.5-4396 or later to resolve the issue. As a temporary workaround, consider restricting access to the installer to minimize the risk of exploitation. Avoid placing untrusted files in the current working directory to prevent DLL hijacking attacks.