| عنوان | Wondershare Filmora 14.5.16 Uncontrolled Search Path |
|---|
| الوصف | Wondershare Filmora V14.5.16 is vulnerable to privilege escalation via DLL hijacking during installation. The installer places NFWCHK.exe, a high-integrity binary—in a user-writable directory, where it insecurely loads CRYPTBASE.dll from the current folder. A low-privileged attacker can pre-create the directory and plant a malicious DLL, which executes with elevated privileges when an administrator runs the installer, enabling arbitrary code execution as Admin. |
|---|
| المصدر | ⚠️ https://gist.github.com/shellkraft/aa66561e984e83052bd080f195a3ec80 |
|---|
| المستخدم | shellkraft (UID 65045) |
|---|
| ارسال | 18/05/2025 05:25 PM (1 سنة منذ) |
|---|
| الاعتدال | 25/05/2025 07:16 PM (7 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 310268 [Wondershare Filmora 14.5.16 Installer NFWCHK.exe تجاوز الصلاحيات] |
|---|
| النقاط | 20 |
|---|