DLL Hijacking Vulnerability in Dell Precision Optimizer Software
CVE-2017-2802 · MEDIUM Severity
AV:N/AC:M/AU:N/C:P/I:P/A:P
An exploitable dll hijacking vulnerability exists in the poaService.exe service component of the Dell Precision Optimizer software version 3.5.5.0. A specifically named malicious dll file located in one of directories pointed to by the PATH environment variable will lead to privilege escalation. An attacker with local access to vulnerable system can exploit this vulnerability.
Learn more about our Web Application Penetration Testing UK.