Name of the Vulnerable Software and Affected Versions WiX installer framework (affected versions not specified)

Description The vulnerability allows an attacker to escalate privileges through DLL redirection attacks. When the bundle is not run as admin, the user's TEMP folder is used, and a utility can monitor this folder for changes. The utility can drop its own DLL into the .be/.Local folder immediately after the .be folder is created. As a result, when the burn engine elevates, the malicious DLL receives elevated privileges. This issue impacts any installer built with the WiX installer framework, utilizing the .exe.Local Windows capability for DLL redirection.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.