PT-2019-9255 · Unknown · Unlha32.Dll

Eili Masami

·

Publicado

2019-02-13

·

Atualizado

2019-02-19

·

CVE-2018-16189

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions UNLHA32.DLL versions prior to 3.00
Description The issue concerns an untrusted search path vulnerability in Self-Extracting Archives created by UNLHA32.DLL. This vulnerability allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
Recommendations For versions prior to 3.00, update to version 3.00 or later to resolve the issue.

Correção

Untrusted Search Path

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-426

Identificadores relacionados

CVE-2018-16189

Produtos afetados

Unlha32.Dll