VDB
CNVD-2016-01334
CNVD-2016-01334
PUBLISHED
Flexera InstallShield是Windows安装开发解决方案。 Flexera InstallShield 2015 SP1及之前版本中存在不受信任搜索路径漏洞,允许本地用户通过在启动程序可执行文件的当前工作目录中的Trojan horse DLL获得权限。
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
Timeline
- Feb 24, 2016 CVE Published
- Feb 25, 2016 CVE ID Reserved
- Jul 24, 2025 PoC Published
References
- 1035097 vdb
- 84213 vdb
- https://www.tenable.com/security/tns-2019-08 url
- https://www.oracle.com/security-alerts/cpuApr2021.html url
- https://flexeracommunity.force.com/customer/articles/INFO/Best-Practices-to-Avoid-Windows-Setup-Launcher-Executable-Issues url
- https://us-cert.cisa.gov/ics/advisories/icsa-20-287-03 url