Vulnerabilities > Untrusted Search Path

DATE CVE VULNERABILITY TITLE RISK
2017-09-01 CVE-2017-10829 Untrusted Search Path vulnerability in NTT Enkaku Support Tool
Untrusted search path vulnerability in Remote Support Tool (Enkaku Support Tool) All versions distributed through the website till 2017 August 10 allow an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
ntt CWE-426
7.8
2017-08-31 CVE-2017-11158 Untrusted Search Path vulnerability in Synology Cloud Station Drive
Multiple untrusted search path vulnerabilities in the installer in Synology Cloud Station Drive before 4.2.5-4396 on Windows allow local attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) shfolder.dll, (2) ntmarta.dll, (3) secur32.dll or (4) dwmapi.dll file in the current working directory.
local
low complexity
synology CWE-426
7.8
2017-08-30 CVE-2017-11157 Untrusted Search Path vulnerability in Synology Cloud Station Backup
Multiple untrusted search path vulnerabilities in the installer in Synology Cloud Station Backup before 4.2.5-4396 on Windows allow local attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) shfolder.dll, (2) ntmarta.dll, (3) secur32.dll or (4) dwmapi.dll file in the current working directory.
local
low complexity
synology CWE-426
7.8
2017-08-29 CVE-2017-2242 Untrusted Search Path vulnerability in NTT Flets Setsuzoku Tool
Untrusted search path vulnerability in Flets Setsuzoku Tool for Windows all versions allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
ntt CWE-426
7.8
2017-08-29 CVE-2017-10836 Untrusted Search Path vulnerability in Optim Optimal Guard 1.1.21
Untrusted search path vulnerability in Optimal Guard 1.1.21 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
optim CWE-426
7.8
2017-08-29 CVE-2017-10831 Untrusted Search Path vulnerability in Moj.Go Commercial Registration Electronic Authentication Software 1.8
Untrusted search path vulnerability in The electronic authentication system based on the commercial registration system "The CRCA user's Software" Ver1.8 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
moj-go CWE-426
7.8
2017-08-29 CVE-2017-10830 Untrusted Search Path vulnerability in NTT Security Setup Tool
Untrusted search path vulnerability in Security Setup Tool all versions allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
ntt CWE-426
7.8
2017-08-29 CVE-2017-10828 Untrusted Search Path vulnerability in NTT Flets Install Tool 12.6.0
Untrusted search path vulnerability in Flets Install Tool all versions distributed through the website till 2017 August 8 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
ntt CWE-426
7.8
2017-08-29 CVE-2017-10827 Untrusted Search Path vulnerability in NTT Flets Azukuu PC Automatic Backup Tool 1.0.3.0
Untrusted search path vulnerability in Flets Azukeru for Windows Auto Backup Tool v1.0.3.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
ntt CWE-426
7.8
2017-08-29 CVE-2017-10826 Untrusted Search Path vulnerability in NTT Security Kinou Mihariban 1.0.21
Untrusted search path vulnerability in Security Kinou Mihariban v1.0.21 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
ntt CWE-426
7.8