Takashi Yoshikawa

**Name of the Vulnerable Software and Affected Versions** e-Tax software (affected versions not specified) **Description** A privilege chaining issue exists in the installer of the e-Tax software, allowing a malicious DLL prepared by an attacker to be executed with higher privileges than the application privilege. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows 7 **Description** The issue is related to an untrusted search path vulnerability, which allows an attacker to gain privileges. This can be achieved via a Trojan horse DLL in an unspecified directory. The vulnerability is also described as being related to incorrect path search handling, potentially allowing a remote attacker to elevate privileges and execute arbitrary code using a specially crafted file. **Recommendations** For Windows 7, consider restricting access to unspecified directories where a Trojan horse DLL could be placed, as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft OneDrive (affected versions not specified) **Description** The issue is related to an untrusted search path vulnerability in the installer. This allows an attacker to gain privileges by using a Trojan horse DLL in an unspecified directory. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Visual Studio Community (affected versions not specified) **Description** The issue is related to an untrusted search path vulnerability in the installer. This could allow an attacker to gain privileges by using a Trojan horse DLL in an unspecified directory. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft OneDrive (affected versions not specified) **Description** The issue concerns an untrusted search path vulnerability that allows an attacker to gain privileges. This can be achieved by using a Trojan horse DLL in an unspecified directory. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Teikihoukokusho Sakuseishien Tool version 4.0 **Description** The issue allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory due to an untrusted search path vulnerability. **Recommendations** For Teikihoukokusho Sakuseishien Tool version 4.0, consider restricting access to directories that may contain Trojan horse DLLs until a patch is available. As a temporary workaround, avoid using the tool in environments where untrusted DLLs may be present. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** EbidSettingChecker.exe version 1.0.0.0 **Description** The issue allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory due to an untrusted search path vulnerability. **Recommendations** For version 1.0.0.0, consider restricting access to the directory where the Trojan horse DLL could be placed to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** jizen setup.exe version prior to 2017 June 12 **Description** The issue is related to an untrusted search path vulnerability in the Installer of the "Setup file of advance preparation". This vulnerability allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. **Recommendations** For versions prior to 2017 June 12, update the Installer to a version released after 2017 June 12 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Shinseiyo Sogo Soft versions 4.8A and earlier **Description** The issue is related to an untrusted search path vulnerability in the Installer component. This vulnerability allows an attacker to gain privileges by using a Trojan horse DLL in an unspecified directory. **Recommendations** For versions 4.8A and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AppCheck versions prior to 2.0.1.15 AppCheck Pro versions prior to 2.0.1.15 **Description** The issue allows an attacker to execute arbitrary code via a specially crafted executable file in an unspecified directory. This is due to an untrusted search path vulnerability. **Recommendations** For AppCheck versions prior to 2.0.1.15, update to version 2.0.1.15 or later. For AppCheck Pro versions prior to 2.0.1.15, update to version 2.0.1.15 or later.

**Name of the Vulnerable Software and Affected Versions** WinSparkle versions prior to 0.5.3 **Description** The issue allows remote attackers to execute arbitrary code via a specially crafted executable file in an unspecified directory. This is due to an untrusted search path vulnerability. **Recommendations** For versions prior to 0.5.3, update to version 0.5.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** 7 Zip for Windows versions 16.02 and earlier **Description** The issue allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory. **Recommendations** For versions 16.02 and earlier, update to a version later than 16.02 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Evernote for Windows versions prior to 6.3 **Description** The issue allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory. This is due to an untrusted search path vulnerability. **Recommendations** For versions prior to 6.3, update to version 6.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** The JPKI user's software (for Windows 7 and later) versions Ver3.1 and earlier The JPKI user's software (for Windows Vista) The JPKI user's software Ver2.6 and earlier **Description** The issue allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory. This is due to an untrusted search path vulnerability in the installers for the affected software. **Recommendations** For The JPKI user's software (for Windows 7 and later) versions Ver3.1 and earlier, update to a version later than Ver3.1. For The JPKI user's software (for Windows Vista), consider applying security patches or updates if available. For The JPKI user's software Ver2.6 and earlier, update to a version later than Ver2.6.

**Name of the Vulnerable Software and Affected Versions** PhishWall Client Internet Explorer versions prior to 3.7.8.2 **Description** The issue is related to an untrusted search path vulnerability in the installer. **Recommendations** For versions prior to 3.7.8.2, update to version 3.7.8.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** LINE versions 4.7.0 and earlier LINE Installer versions 4.7.0 and earlier **Description** The issue allows local users to gain privileges via a Trojan horse DLL in an unspecified directory. This is due to an untrusted search path vulnerability. **Recommendations** For LINE versions 4.7.0 and earlier, update to a version later than 4.7.0. For LINE Installer versions 4.7.0 and earlier, update to a version later than 4.7.0.

**Name of the Vulnerable Software and Affected Versions** Python versions prior to 3.5.0 **Description** The issue is related to an untrusted search path vulnerability in python.exe on Windows, allowing local users to gain privileges via a Trojan horse readline.pyd file in the current working directory. **Recommendations** For versions prior to 3.5.0, consider restricting access to the current working directory to minimize the risk of exploitation. As a temporary workaround, avoid using the readline.pyd file until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows Vista SP2 Microsoft Windows Server 2008 SP2 and R2 SP1 Microsoft Windows 7 SP1 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows RT **Description** The issue is related to an untrusted search path vulnerability in the LoadLibrary function in the kernel. This vulnerability allows local users to gain privileges via a Trojan horse DLL in an unspecified directory. An elevation of privilege vulnerability exists when the LoadLibrary function fails to properly validate user input. An authenticated attacker who successfully exploits this vulnerability could elevate privileges on a targeted system, then install programs, view, change, or delete data, or create new accounts with full administrative rights. **Recommendations** For Microsoft Windows Vista SP2, update to a fixed version to resolve the issue. For Microsoft Windows Server 2008 SP2 and R2 SP1, update to a fixed version to resolve the issue. For Microsoft Windows 7 SP1, update to a fixed version to resolve the issue. For Microsoft Windows 8, update to a fixed version to resolve the issue. For Microsoft Windows Server 2012, update to a fixed version to resolve the issue. For Microsoft Windows RT, update to a fixed version to resolve the issue. As a temporary workaround, consider restricting access to the LoadLibrary function until a patch is available. Avoid placing untrusted .dll files in local directories on the machine or on network shares to minimize the risk of exploitation.