CVE-2017-2248

Description

Untrusted search path vulnerability in Installer of Lhaz+ version 3.4.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

Affected products

• Chitora soft / Installer of Lhaz+version 3.4.0 and earlier – version 3.4.0 and earlier

References

• MISChttps://jvn.jp/en/jp/JVN21369452/index.html
• MISChttp://chitora.com/jvn21369452.html