Blackwingcat

**Name of the Vulnerable Software and Affected Versions** PhishWall Client Internet Explorer edition versions 3.7.15 and earlier **Description** The issue concerns an untrusted search path vulnerability in the installer. This vulnerability allows an attacker to gain privileges by using a Trojan horse DLL in an unspecified directory. **Recommendations** For versions 3.7.15 and earlier, update to a version later than 3.7.15 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** The Public Certification Service for Individuals "The JPKI user's software" versions Ver3.1 and earlier **Description** The issue concerns an untrusted search path vulnerability. This vulnerability allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. **Recommendations** For versions Ver3.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** The CRCA user's Software versions 1.8 and earlier **Description** The issue concerns an untrusted search path vulnerability in the electronic authentication system. This vulnerability allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. **Recommendations** For versions 1.8 and earlier, update to a version later than 1.8 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** File Compact Ver.5 versions 5.10 and earlier File Compact Ver.6 versions 6.02 and earlier File Compact Ver.7 versions 7.02 and earlier **Description** The issue allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory due to an untrusted search path vulnerability in self-extracting archive files. **Recommendations** For File Compact Ver.5 versions 5.10 and earlier, update to a version later than 5.10 to resolve the issue. For File Compact Ver.6 versions 6.02 and earlier, update to a version later than 6.02 to resolve the issue. For File Compact Ver.7 versions 7.02 and earlier, update to a version later than 7.02 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Douro Kouji Kanseizutou Check Program versions 3.1.0 and earlier **Description** The issue allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory. This is due to an untrusted search path vulnerability. **Recommendations** For Douro Kouji Kanseizutou Check Program versions 3.1.0 and earlier, consider restricting access to the affected directory to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Denshinouhin Check System (for Ministry of Agriculture, Forestry and Fisheries Nouson Seibi Jigyou) versions 8.0.001.001 through 9.0.001.001 **Description** The issue concerns an untrusted search path vulnerability in the Installer of the Denshinouhin Check System. This vulnerability allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. **Recommendations** For versions 8.0.001.001 through 9.0.001.001, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** RW-5100 tool to verify execution environment version 1.1.0.0 RW-5100 tool to verify execution environment version 1.2.0.0 **Description** The issue allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory due to an untrusted search path vulnerability. **Recommendations** For version 1.1.0.0, update to a version that includes a fix for the untrusted search path vulnerability. For version 1.2.0.0, update to a version that includes a fix for the untrusted search path vulnerability. As a temporary workaround, consider restricting access to directories where the RW-5100 tool is executed to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Houkokusyo Sakusei Shien Tool version 3.0.2 Houkokusyo Sakusei Shien Tool versions 2.0 and later **Description** The issue is related to an untrusted search path vulnerability in the installer. This vulnerability allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. **Recommendations** For Houkokusyo Sakusei Shien Tool version 3.0.2, update to a version that is not affected by this issue. For Houkokusyo Sakusei Shien Tool versions 2.0 and later, update to a version that is not affected by this issue. As a temporary workaround, consider restricting access to the installer to minimize the risk of exploitation.