Untrusted search path vulnerability via a Trojan horse dwmapi.dll in TechSmith SnagItID: oval:org.mitre.oval:def:6668 | Date: (C)2010-09-28 (M)2022-10-10 |
Class: VULNERABILITY | Family: windows |
Untrusted search path vulnerability in TechSmith SnagIt versions 10.x and 11.x allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a snag, snagcc, or snagprof file.
Platform: |
Microsoft Windows Server 2003 |
Microsoft Windows 2000 |
Microsoft Windows 7 |
Microsoft Windows Server 2008 |
Microsoft Windows Vista |
Microsoft Windows XP |