CVE-2017-2247

Name of the Vulnerable Software and Affected Versions Lhaz versions 2.4.0 and earlier

Description The issue concerns an untrusted search path vulnerability in self-extracting archive files created by Lhaz. This vulnerability allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

Recommendations For versions 2.4.0 and earlier, update to a version later than 2.4.0 to resolve the issue.