Untrusted Search Path Vulnerability in Hamster Free ZIP Archiver 2.0.1.7 Allows Arbitrary Code Execution and DLL Hijacking

Untrusted Search Path Vulnerability in Hamster Free ZIP Archiver 2.0.1.7 Allows Arbitrary Code Execution and DLL Hijacking

CVE-2014-0619 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

Untrusted search path vulnerability in Hamster Free ZIP Archiver 2.0.1.7 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the current working directory.

Learn more about our Api Penetration Testing.