Untrusted Search Path Vulnerability in Lhaz Installer (Versions 2.4.0 and Earlier) Allows Privilege Escalation via Trojan DLL

Untrusted Search Path Vulnerability in Lhaz Installer (Versions 2.4.0 and Earlier) Allows Privilege Escalation via Trojan DLL

CVE-2017-2246 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Untrusted search path vulnerability in Installer of Lhaz version 2.4.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

Learn more about our Web Application Penetration Testing UK.