Name of the Vulnerable Software and Affected Versions LOTCMAN:PLM (affected versions not specified)

Description The issue is related to the "ЛОЦМАН Справочник структурных подразделений" module in the LOTCMAN:PLM system, which allows for unlimited upload of dangerous file types. This enables an attacker to execute arbitrary code by replacing dll libraries, such as MSDART.DLL, in specific directories.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.