Vulnerabilities > Untrusted Search Path
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-02 | CVE-2017-7642 | Untrusted Search Path vulnerability in Hashicorp Vagrant VMWare Fusion The sudo helper in the HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) before 4.0.21 allows local users to gain root privileges by leveraging failure to verify the path to the encoded ruby script or scrub the PATH variable. | 7.8 |
| 2017-08-02 | CVE-2015-8264 | Untrusted Search Path vulnerability in F-Secure Online Scanner Untrusted search path vulnerability in F-Secure Online Scanner allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse DLL that is located in the same folder as F-SecureOnlineScanner.exe. | 7.8 |
| 2017-08-02 | CVE-2017-2279 | Untrusted Search Path vulnerability in Kiri Tween Untrusted search path vulnerability in Tween Ver1.6.6.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | 7.8 |
| 2017-07-30 | CVE-2017-11749 | Untrusted Search Path vulnerability in Internet-Soft FTP Commander 8.02 InternetSoft FTP Commander 8.02 and prior has an untrusted search path, allowing DLL hijacking via a Trojan horse dwmapi.dll file. | 7.8 |
| 2017-07-30 | CVE-2017-11748 | Untrusted Search Path vulnerability in Softonic Spider Player 2.5.3 VIT Spider Player 2.5.3 has an untrusted search path, allowing DLL hijacking via a Trojan horse dwmapi.dll, olepro32.dll, dsound.dll, or AUDIOSES.dll file. | 7.8 |
| 2017-07-30 | CVE-2017-11742 | Untrusted Search Path vulnerability in Libexpat Project Libexpat 2.2.1/2.2.2 The writeRandomBytes_RtlGenRandom function in xmlparse.c in libexpat in Expat 2.2.1 and 2.2.2 on Windows allows local users to gain privileges via a Trojan horse ADVAPI32.DLL in the current working directory because of an untrusted search path, aka DLL hijacking. | 7.8 |
| 2017-07-17 | CVE-2017-2272 | Untrusted Search Path vulnerability in Hibara Attachecase Untrusted search path vulnerability in Self-extracting encrypted files created by AttacheCase ver.3.2.2.6 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | 7.8 |
| 2017-07-17 | CVE-2017-2271 | Untrusted Search Path vulnerability in Hibara Attachecase 2.8.0.0/2.8.2.8/2.8.3.0 Untrusted search path vulnerability in Self-extracting encrypted files created by AttacheCase ver.2.8.3.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | 7.8 |
| 2017-07-17 | CVE-2017-2270 | Untrusted Search Path vulnerability in Resume-Next Filecapsule Deluxe Portable 1.0.4.1/1.0.5.1/2.0.9 Untrusted search path vulnerability in Encrypted files in self-decryption format created by FileCapsule Deluxe Portable Ver.2.0.9 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | 7.8 |
| 2017-07-17 | CVE-2017-2269 | Untrusted Search Path vulnerability in Resume-Next Filecapsule Deluxe Portable 1.0.4.1/1.0.5.1/2.0.9 Untrusted search path vulnerability in FileCapsule Deluxe Portable Ver.2.0.9 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | 7.8 |