| Título | retroarch 1.19.1 Command Injection |
|---|
| Descripción | During the program's startup, it was identified that the application calls several files with the '.dll' extension in a local installation folder. This action enabled the use of a non-existent 'profapi.dll' file in the binary's installation folder, allowing code injection into the DLL file.
This action could enable remote code execution through DLL injection. |
|---|
| Fuente | ⚠️ https://www.retroarch.com/ |
|---|
| Usuario | Havook (UID 71104) |
|---|
| Sumisión | 2025-01-02 18:38 (hace 1 Año) |
|---|
| Moderación | 2025-01-14 09:07 (12 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 291476 [libretro RetroArch hasta 1.19.1 en Windows Startup profapi.dll escalada de privilegios] |
|---|
| Puntos | 15 |
|---|