CVE-2023-4931

Name of the Vulnerable Software and Affected Versions Plesk Installer version 3.27.0.0

Description The issue allows a local attacker to execute arbitrary code by injecting DLL files into the same folder where the application is installed. This results in DLL hijacking in files such as edputil.dll, samlib.dll, urlmon.dll, sspicli.dll, propsys.dll, and profapi.dll.

Recommendations For Plesk Installer version 3.27.0.0, consider restricting access to the installation folder to prevent DLL injection until a patch is available. As a temporary workaround, avoid using the vulnerable DLL files edputil.dll, samlib.dll, urlmon.dll, sspicli.dll, propsys.dll, and profapi.dll to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.