DLL Hijacking Vulnerability in Eaton's 9000x Programming and Configuration Software v2.0.38 and Prior

DLL Hijacking Vulnerability in Eaton's 9000x Programming and Configuration Software v2.0.38 and Prior

CVE-2020-6654 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A DLL Hijacking vulnerability in Eaton's 9000x Programming and Configuration Software v 2.0.38 and prior allows an attacker to execute arbitrary code by replacing the required DLLs with malicious DLLs when the software try to load vci11un6.DLL and cinpl.DLL.

Learn more about our Web Application Penetration Testing UK.