Nmap versions 7.00 and below for Windows suffer from a DLL hijacking vulnerability.
089e1861a1d4fdd2cdd69f741ed43b204fa79e9339d09bb6bf79333ae77611d2McAfee security products executable installers suffer from a DLL hijacking vulnerability.
e376234826ed6225a88e501590a6c820800acc5378cf79d77889ccc9b9a2331eGoogle Chrome's executable installers suffer from a DLL hijacking vulnerability.
224bde92e1c40f51d2ba4b1e631e936dfa88b0fa7bd117702757729ad02059417-Zip executable installers suffer from a DLL hijacking vulnerability.
a259b0953e210ae02ad72512f7e8c51dc0cd1cf3d177364e8af93dd658d937b4JRSoft InnoSetup executable installers suffer from a DLL hijacking vulnerability.
23c3a9d703e6f64f18b7c20de18f64f87a8815cce1acfca84716961420cfefe4The executable installer for Nullsoft Scriptable Install System suffers from DLL hijacking vulnerabilities.
ccdd46e5818b0dbedc4279878178a5cf6e2457038d1d43966c56612639a16f64The executable installer for the VideoLAN Client suffers from DLL hijacking vulnerabilities.
06d549ebc07d5067e07e42895a4d82a9fa7b46ae2fc9574aec65049b635ccd48SumatraPDF suffers from multiple DLL hijacking vulnerabilities.
27dc14dd449f0656362e2a1fa165d4528d2383f2dcf213a1d7c74b9e5a2afc1eMozilla's SETUP.exe suffers from a classic DLL injection vulnerability.
f0f3561003f9aad503eddd10d186760a70b521b4ca5d80ae51ab265713117c58Windows Mail will execute a rogue program if it is sitting at C:\Program.exe.
f3534d160722b0c8512076ca40f68dc52eb9958ad735b147cbbd847d80bd678aApple iTunes version 11.2.2 for Windows comes with outdated and vulnerable libraries.
06dd04f00b24ec800040eaaa5b70fc019fae6203350c787c6d149bfb0721507bThe WHQL-signed Synaptics touchpad driver delivered via Windows Update executes a rogue program C:\Program.exe with system privileges after its installation.
404715addcfed1bb09a24b3d012bd09aa7ac32c25420053cfa249818f2df19aaPoor treatment of file paths may lead to rogue binary execution in McAfee Security Scanner Plus.
1f27a310e8ba534f86eb471ef915bc94b1c682806e2c9e1eb7e4cbce7b1f69a1Exact Audio Copy version 1.0 beta 3 ship with outdated, unsupported, and vulnerable third party components.
d7401c6892ad2df18ff9b12c1511d96fd4462a5e69d677d669cd5e0b25e1edeeAdobe Reader version 11.0.03 installs multiple vulnerable third party components.
92867cb438017412891299d6363d515d6e808f27508933657856de2352bdc38cThis is a long advisory detailing a lot of back and forth between Microsoft and a researcher in regards to thousands of binary planting issues.
4e3fd4327955e3fdb8ef5db89ace7b235c3daf12236f829844f610a702d23c65Many Microsoft products install outdated and vulnerable Microsoft Visual C++ Runtime Libraries MSVC?80.DLL version 8.0.50727.42.
79d41b28c3cca91d28fadfcdc33dd2ddd6f4aeafcc354d1098eef8ce90448472Fujitsu's update utility "Fujitsu Desktop Update", which is factory-preinstalled on every Fujitsu (Siemens) PC with Windows, has a vulnerability which allows the execution of a rogue program in the security context of the current user.
2202eecc6bc0de9cf753988607db78f29bba9e60d2f845aacd1b52e1a0106eeb3CXPhoneSystem11.exe (for Windows) comes with vulnerable outdated third party libraries and components.
69cba503c241948b132b39eaebd4d6ea204480f2f09dd78aff20760fcccfa5773CXPhone6.msi (for Windows) comes with vulnerable outdated third party libraries and components.
bb201f262088d88b08a2e77776c0afb02bbbe6e69f68855536164dd78da9e033The Fujitsu Lifebook A512 with Windows 8 Professional x64 factory preinstallation comes shipped with out of date vulnerability components and insecure installations.
149be66ca877ed618264fb078501befafb7a2310c8c9244bbcb494a5d08d46b6Microsoft Security Essentials versions prior to 4.2 have a vulnerability that could lead to execution of arbitrary code in the security context of the LocalSystem account.
630839495c69bb80d036def90337a0a1056ac7d933a99a4be17cb22ed523c8b4eM Client 4 ships with deprecated and vulnerable Microsoft Visual C++ 2008 runtime DLLs.
6b09813e63424906cd88cf7e406e13caa79e7f3a4fc8f530ead65701b478e952Ogg DirectShow filters are distributed and installed with vulnerable MSVC++ 2008 runtime libraries.
b06efefa49fe4a839ba260c3501c2c5e9f23dfff7b6ac56b0a3f398118641d05The current version of Dell's Data Protection | Access (DDPA) software for Windows (Build 2.2.00003.008 from 2012-06-14, released August 2012) contains and installs several outdated, superfluous and vulnerable Windows system components as well as outdated and vulnerable 3rd party components and drivers.
94bd37cd29972c65c66ecaa5cf64277fc3f8e5d39650d0466b7af17303cc6c54
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed