CVE-2018-0598

Published: Jun 26, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

Untrusted search path vulnerability in Self-extracting archive files created by IExpress bundled with Microsoft Windows allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

Vendor	Product	Versions
Microsoft	Self-extracting archive files created by IExpress bundled with Microsoft Windows	affected `unspecified`

References

https://blogs.technet.microsoft.com/srd/2018/04/04/triaging-a-dll-planting-vulnerability/

JVN#72748502

third-party-advisory

https://msrc.microsoft.com/blog/2018/04/triaging-a-dll-planting-vulnerability/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-0598

Description

Affected Products

References