CVE-2018-6765

Name of the Vulnerable Software and Affected Versions MySwisscomAssistant version 2.17.1.1065

Description The issue allows an unauthenticated, remote attacker to execute arbitrary code on the targeted system due to the way .dll files are loaded. This is possible because an attacker can load a .dll of their choosing, which could execute arbitrary code without the user's knowledge. The specific flaw exists within the handling of several DLLs, including dwmapi.dll, IPHLPAPI.DLL, WindowsCodecs.dll, RpcRtRemote.dll, CRYPTSP.dll, rasadhlp.dll, DNSAPI.dll, ntmarta.dll, netbios.dll, olepro32.dll, security.dll, winhttp.dll, and WINSTA.dll, loaded by the MySwisscomAssistant Setup.exe process.

Recommendations For MySwisscomAssistant version 2.17.1.1065, consider restricting the loading of external .dll files by the MySwisscomAssistant Setup.exe process as a temporary mitigation measure until a patch is available. Additionally, avoid using the affected MySwisscomAssistant Setup.exe process until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.