Arbitrary DLL Code Execution Vulnerability in Amazon Audible for Windows

Arbitrary DLL Code Execution Vulnerability in Amazon Audible for Windows

CVE-2017-17069 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

ActiveSetupN.exe in Amazon Audible for Windows before November 2017 allows attackers to execute arbitrary DLL code if ActiveSetupN.exe is launched from a directory where an attacker has already created a Trojan horse dwmapi.dll file.

Learn more about our Api Penetration Testing.