Name of the Vulnerable Software and Affected Versions: WiX installer framework (affected versions not specified)

Description: The vulnerability allows an attacker to escalate privileges through DLL redirection attacks. When the bundle is not run as admin, the user's TEMP folder is used, and a utility can monitor this folder for changes. The utility can drop its own DLL into the .be/.Local folder immediately when the .be folder is created. As a result, when the burn engine elevates, the malicious DLL receives elevated privileges. This issue impacts any installer built with the WiX installer framework, utilizing the .exe.Local Windows capability for DLL redirection.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.