Ye Yint Min Thu Htut

#17120of 53,635
15.6Total CVSS
Vulnerabilities · 2
High
2
PT-2017-12222
7.8
2017-07-30
Vit · Vit Spider Player · CVE-2017-11748
**Name of the Vulnerable Software and Affected Versions** VIT Spider Player version 2.5.3 **Description** The issue allows for DLL hijacking via a Trojan horse file, specifically targeting `dwmapi.dll`, `olepro32.dll`, `dsound.dll`, or `AUDIOSES.dll`. This can occur due to an untrusted search path. **Recommendations** For VIT Spider Player version 2.5.3, consider restricting access to the mentioned DLL files until a patch is available. As a temporary workaround, avoid using the application in environments where untrusted files may be present. At the moment, there is no information about a newer version that contains a fix for this issue.
PT-2017-12223
7.8
2017-07-30
Internetsoft · Ftp Commander · CVE-2017-11749
**Name of the Vulnerable Software and Affected Versions** InternetSoft FTP Commander versions 8.02 and prior **Description** The issue allows for DLL hijacking via a Trojan horse dwmapi.dll file due to an untrusted search path. **Recommendations** For InternetSoft FTP Commander versions 8.02 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.