Royalsnek

**Name of the Vulnerable Software and Affected Versions** Unidocs ezPDF DRM Reader and ezPDF Reader versions 2.0 and 3.0.0.4 **Description** A security issue exists in Unidocs ezPDF DRM Reader and ezPDF Reader. The problem is related to an uncontrolled search path within the `SHFOLDER.dll` library. This requires local access to exploit and is considered highly complex, though an exploit is publicly available. The vendor was notified but did not respond. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.