Vulnerabilities > CVE-2017-7444 - DLL Loading Local Code Execution vulnerability in Veritas System Recovery 16

047910
CVSS 9.3 - CRITICAL
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
veritas
critical

Summary

In Veritas System Recovery before 16 SP1, there is a DLL hijacking vulnerability in the patch installer if an attacker has write access to the directory from which the product is executed.

Vulnerable Configurations

Part Description Count
Application
Veritas
1