Vulnerabilities > Untrusted Search Path
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-31 | CVE-2018-6475 | Untrusted Search Path vulnerability in Superantispyware 6.0.1254 In SUPERAntiSpyware Professional Trial 6.0.1254, SUPERAntiSpyware.exe allows DLL hijacking, leading to Escalation of Privileges. | 7.8 |
| 2018-01-26 | CVE-2018-0507 | Untrusted Search Path vulnerability in Ntt-East products Untrusted search path vulnerability in FLET'S VIRUS CLEAR Easy Setup & Application Tool ver.11 and earlier versions, FLET'S VIRUS CLEAR v6 Easy Setup & Application Tool ver.11 and earlier versions allow an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | 7.8 |
| 2018-01-19 | CVE-2017-7327 | Untrusted Search Path vulnerability in Yandex Browser Yandex Browser installer for Desktop before 17.4.1 has a DLL Hijacking Vulnerability because an untrusted search path is used for dnsapi.dll, winmm.dll, ntmarta.dll, cryptbase.dll or profapi.dll. | 7.8 |
| 2018-01-18 | CVE-2017-5696 | Untrusted Search Path vulnerability in Intel Graphics Driver Untrusted search path in Intel Graphics Driver 15.40.x.x, 15.45.x.x, and 21.20.x.x allows unprivileged user to elevate privileges via local access. | 7.8 |
| 2018-01-08 | CVE-2017-15913 | Untrusted Search Path vulnerability in Navercorp Whale The Installer in Whale allows DLL hijacking. | 7.8 |
| 2017-12-27 | CVE-2017-17010 | Untrusted Search Path vulnerability in Sony Content Manager Assistant 3.55.7671.0901 Untrusted search path vulnerability in Content Manager Assistant for PlayStation version 3.55.7671.0901 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | 7.8 |
| 2017-12-22 | CVE-2017-10909 | Untrusted Search Path vulnerability in Sony Music Center 1.0.00/1.0.01 Untrusted search path vulnerability in Music Center for PC version 1.0.01 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | 7.8 |
| 2017-12-20 | CVE-2017-17809 | Untrusted Search Path vulnerability in Goldenfrog Vyprvpn In Golden Frog VyprVPN before 2.15.0.5828 for macOS, the vyprvpnservice launch daemon has an unprotected XPC service that allows attackers to update the underlying OpenVPN configuration and the arguments passed to the OpenVPN binary when executed. | 7.8 |
| 2017-12-18 | CVE-2017-16997 | Untrusted Search Path vulnerability in multiple products elf/dl-load.c in the GNU C Library (aka glibc or libc6) 2.19 through 2.26 mishandles RPATH and RUNPATH containing $ORIGIN for a privileged (setuid or AT_SECURE) program, which allows local users to gain privileges via a Trojan horse library in the current working directory, related to the fillin_rpath and decompose_rpath functions. | 7.8 |
| 2017-12-16 | CVE-2017-11397 | Untrusted Search Path vulnerability in Trendmicro Encryption for Email 5.6.0.1073 A service DLL preloading vulnerability in Trend Micro Encryption for Email versions 5.6 and below could allow an unauthenticated remote attacker to execute arbitrary code on a vulnerable system. | 7.8 |