Vulnerabilities > Untrusted Search Path

DATE CVE VULNERABILITY TITLE RISK
2017-09-21 CVE-2015-3887 Untrusted Search Path vulnerability in Proxychains-Ng Project Proxychains-Ng
Untrusted search path vulnerability in ProxyChains-NG before 4.9 allows local users to gain privileges via a Trojan horse libproxychains4.so library in the current working directory, which is referenced in the LD_PRELOAD path.
local
low complexity
proxychains-ng-project CWE-426
7.8
2017-09-21 CVE-2017-12252 Untrusted Search Path vulnerability in Cisco Findit Network Discovery Utility 2.0.3
A vulnerability in the Cisco FindIT Network Discovery Utility could allow an authenticated, local attacker to perform a DLL preloading attack, potentially causing a partial impact to device availability, confidentiality, and integrity.
local
low complexity
cisco CWE-426
7.8
2017-09-15 CVE-2017-10860 Untrusted Search Path vulnerability in DAJ I-Filter Installer 6.0
Untrusted search path vulnerability in "i-filter 6.0 installer" timestamp of code signing is before 23 Aug 2017 (JST) allows an attacker to execute arbitrary code via a specially crafted executable file in an unspecified directory.
local
low complexity
daj CWE-426
7.8
2017-09-15 CVE-2017-10859 Untrusted Search Path vulnerability in DAJ I-Filter Installer 6.0
Untrusted search path vulnerability in "i-filter 6.0 installer" timestamp of code signing is before 23 Aug 2017 (JST) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
daj CWE-426
7.8
2017-09-15 CVE-2017-10858 Untrusted Search Path vulnerability in DAJ I-Filter Installer 1.0.8.1
Untrusted search path vulnerability in "i-filter 6.0 install program" file version 1.0.8.1 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
daj CWE-426
7.8
2017-09-15 CVE-2017-10855 Untrusted Search Path vulnerability in Fujitsu Fence-Explorer 8.4.1
Untrusted search path vulnerability in FENCE-Explorer for Windows V8.4.1 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
fujitsu CWE-426
7.8
2017-09-01 CVE-2017-10851 Untrusted Search Path vulnerability in Fujixerox Contentsbridge Utility 7.4.0
Untrusted search path vulnerability in Installer for ContentsBridge Utility for Windows 7.4.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
fujixerox CWE-426
7.8
2017-09-01 CVE-2017-10850 Untrusted Search Path vulnerability in Fujifilm Apeosport-Vi and Docucentre-Vi
Untrusted search path vulnerability in Installers of ART EX Driver for ApeosPort-VI C7771/C6671/C5571/C4471/C3371/C2271, DocuCentre-VI C7771/C6671/C5571/C4471/C3371/C2271 (Timestamp of code signing is before 12 Apr 2017 02:04 UTC.), PostScript? Driver + Additional Feature Plug-in + PPD File for ApeosPort-VI C7771/C6671/C5571/C4471/C3371/C2271, DocuCentre-VI C7771/C6671/C5571/C4471/C3371/C2271 (Timestamp of code signing is before 12 Apr 2017 02:10 UTC.), XPS Print Driver for ApeosPort-VI C7771/C6671/C5571/C4471/C3371/C2271, DocuCentre-VI C7771/C6671/C5571/C4471/C3371/C2271 (Timestamp of code signing is before 3 Nov 2017 23:48 UTC.), ART EX Direct FAX Driver for ApeosPort-VI C7771/C6671/C5571/C4471/C3371/C2271, DocuCentre-VI C7771/C6671/C5571/C4471/C3371/C2271 (Timestamp of code signing is before 26 May 2017 07:44 UTC.), Setting Restore Tool for ApeosPort-VI C7771/C6671/C5571/C4471/C3371/C2271, DocuCentre-VI C7771/C6671/C5571/C4471/C3371/C2271 (Timestamp of code signing is before 25 Aug 2015 08:51 UTC.) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
fujifilm CWE-426
7.8
2017-09-01 CVE-2017-10849 Untrusted Search Path vulnerability in Fujixerox Docuworks 8.0.7
Untrusted search path vulnerability in Self-extracting document generated by DocuWorks 8.0.7 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
fujixerox CWE-426
7.8
2017-09-01 CVE-2017-10848 Untrusted Search Path vulnerability in Fujixerox Docuworks and Docuworks Viewer Light
Untrusted search path vulnerability in Installers for DocuWorks 8.0.7 and earlier and DocuWorks Viewer Light published in Jul 2017 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
fujixerox CWE-426
7.8