Vulnerabilities > Untrusted Search Path

DATE CVE VULNERABILITY TITLE RISK
2017-07-30 CVE-2017-11749 Untrusted Search Path vulnerability in Internet-Soft FTP Commander 8.02
InternetSoft FTP Commander 8.02 and prior has an untrusted search path, allowing DLL hijacking via a Trojan horse dwmapi.dll file.
local
low complexity
internet-soft CWE-426
7.8
2017-07-30 CVE-2017-11748 Untrusted Search Path vulnerability in Softonic Spider Player 2.5.3
VIT Spider Player 2.5.3 has an untrusted search path, allowing DLL hijacking via a Trojan horse dwmapi.dll, olepro32.dll, dsound.dll, or AUDIOSES.dll file.
local
low complexity
softonic CWE-426
7.8
2017-07-30 CVE-2017-11742 Untrusted Search Path vulnerability in Libexpat Project Libexpat 2.2.1/2.2.2
The writeRandomBytes_RtlGenRandom function in xmlparse.c in libexpat in Expat 2.2.1 and 2.2.2 on Windows allows local users to gain privileges via a Trojan horse ADVAPI32.DLL in the current working directory because of an untrusted search path, aka DLL hijacking.
local
low complexity
libexpat-project CWE-426
7.8
2017-07-17 CVE-2017-2272 Untrusted Search Path vulnerability in Hibara Attachecase
Untrusted search path vulnerability in Self-extracting encrypted files created by AttacheCase ver.3.2.2.6 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
hibara CWE-426
7.8
2017-07-17 CVE-2017-2271 Untrusted Search Path vulnerability in Hibara Attachecase 2.8.0.0/2.8.2.8/2.8.3.0
Untrusted search path vulnerability in Self-extracting encrypted files created by AttacheCase ver.2.8.3.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
hibara CWE-426
7.8
2017-07-17 CVE-2017-2270 Untrusted Search Path vulnerability in Resume-Next Filecapsule Deluxe Portable 1.0.4.1/1.0.5.1/2.0.9
Untrusted search path vulnerability in Encrypted files in self-decryption format created by FileCapsule Deluxe Portable Ver.2.0.9 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
resume-next CWE-426
7.8
2017-07-17 CVE-2017-2269 Untrusted Search Path vulnerability in Resume-Next Filecapsule Deluxe Portable 1.0.4.1/1.0.5.1/2.0.9
Untrusted search path vulnerability in FileCapsule Deluxe Portable Ver.2.0.9 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
resume-next CWE-426
7.8
2017-07-17 CVE-2017-2268 Untrusted Search Path vulnerability in Resume-Next Filecapsule Deluxe Portable 1.0.4.1/1.0.5.1
Untrusted search path vulnerability in Encrypted files in self-decryption format created by FileCapsule Deluxe Portable Ver.1.0.5.1 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
resume-next CWE-426
7.8
2017-07-17 CVE-2017-2267 Untrusted Search Path vulnerability in Resume-Next Filecapsule Deluxe Portable 1.0.4.1/1.0.5.1
Untrusted search path vulnerability in FileCapsule Deluxe Portable Ver.1.0.5.1 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
resume-next CWE-426
7.8
2017-07-17 CVE-2017-2266 Untrusted Search Path vulnerability in Resume-Next Filecapsule Deluxe Portable 1.0.4.1
Untrusted search path vulnerability in Encrypted files in self-decryption format created by FileCapsule Deluxe Portable Ver.1.0.4.1 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
resume-next CWE-426
7.8