The host is installed with KeePass before 1.18 and is prone to an untrusted search path vulnerability. A flaw is present in the application which fails to properly handle an issue in the directory that contains a .kdb file. Successful exploitation allows attackers to gain privileges via a Trojan horse DLL in the current working directory.