CVE-2019-12805

Name of the Vulnerable Software and Affected Versions NCSOFT Game Launcher, NC Launcher2 versions 2.4.1.691 and earlier

Description The issue is related to a vulnerability in the custom protocol handler, which could allow a remote attacker to execute arbitrary commands. This requires user interaction, where the target must visit a malicious web page, potentially leading to code execution in the context of the current user.

Recommendations For versions 2.4.1.691 and earlier, update to a version later than 2.4.1.691 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.