CVE-2016-10157

Name of the Vulnerable Software and Affected Versions Akamai NetSession version 1.9.3.1

Description The issue is related to DLL Hijacking, where Akamai NetSession tries to load CSUNSAPI.dll without providing the complete path. This is exacerbated by the absence of the mentioned DLL from the installation, allowing for DLL hijacking and potential code injection within the Akamai NetSession process space.

Recommendations For Akamai NetSession version 1.9.3.1, consider restricting the loading of DLLs to only those with fully specified paths to mitigate the risk of DLL hijacking. As a temporary workaround, ensure that no malicious CSUNSAPI.dll is loaded by the application. At the moment, there is no information about a newer version that contains a fix for this vulnerability.