DLL Hijacking Vulnerability in Dell Precision Optimizer Software

DLL Hijacking Vulnerability in Dell Precision Optimizer Software

CVE-2017-2802 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

An exploitable dll hijacking vulnerability exists in the poaService.exe service component of the Dell Precision Optimizer software version 3.5.5.0. A specifically named malicious dll file located in one of directories pointed to by the PATH environment variable will lead to privilege escalation. An attacker with local access to vulnerable system can exploit this vulnerability.

Learn more about our Web Application Penetration Testing UK.