CVE-2017-5170

Name of the Vulnerable Software and Affected Versions: Moxa SoftNVR-IA Live Viewer versions 3.30.3122 and prior

Description: An Uncontrolled Search Path Element issue, also known as DLL Hijacking, has been identified. This issue allows an attacker to exploit the vulnerability by renaming a malicious DLL to match the application's requirements, which the application fails to verify. The attacker must have administrative access to the default installation location to place the malicious DLL. Once the DLL is loaded by the application, it can execute malicious code at the application's privilege level.

Recommendations: For Moxa SoftNVR-IA Live Viewer versions 3.30.3122 and prior, consider restricting access to the default install location to prevent an attacker from planting a malicious DLL. As a temporary workaround, monitor the application's behavior and system logs for suspicious activity. At the moment, there is no information about a newer version that contains a fix for this vulnerability.