PT-2021-17142 · Unknown · Galaxyclient

Brian Papile

Published

2021-04-30

Updated

2021-05-12

CVE-2021-26807

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions GalaxyClient version 2.0.28.9

Description The issue allows an attacker to potentially run code locally through unsigned DLL loading, as GalaxyClient loads unsigned DLLs such as zlib1.dll, libgcc s dw2-1.dll, and libwinpthread-1.dll from the system's PATH.

Recommendations For GalaxyClient version 2.0.28.9, consider restricting the loading of unsigned DLLs to prevent potential code execution. As a temporary workaround, restrict access to the PATH to minimize the risk of exploitation.

Exploit

Fix

Untrusted Search Path

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-426

Related Identifiers

CVE-2021-26807

Affected Products

Galaxyclient

PT-2021-17142 · Unknown · Galaxyclient

CVE-2021-26807

Weakness Enumeration

Related Identifiers

Affected Products

References · 4