QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2017-2209

Back to search

CVE-2017-2209

Published: Jun 9, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

Untrusted search path vulnerability in the installer of Houkokusyo Sakusei Shien Tool ver3.0.2 (For the first installation) (The version which was available on the website from 2017 April 4 to 2017 May 18) and ver2.0 and later (For the first installation) (The versions which were available on the website prior to 2017 April 4) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

VendorProductVersions

Ministry of the Environment

Installer of Houkokusyo Sakusei Shien Tool

affected
ver3.0.2(For the first installation) (The version which was available on the website from 2017 April 4 to 2017 May 18)
affected
ver2.0 and later(For new installations) (The versions which were available on the website prior to 2017 April 4)

References

JVN#24087303
third-party-advisory
x_refsource_JVN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now