CVE-2017-2130

High

Untrusted search path vulnerability in the installer of PhishWall Client Internet Explorer version Ver. 3.7.13 and earlier allows remote…

jpcert·CWE-426·Published 2017-04-28

CVSS

7.8

EPSS

0.02

KEV

Exploits

cve.orgen

217 chars

Untrusted search path vulnerability in the installer of PhishWall Client Internet Explorer version Ver. 3.7.13 and earlier allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory.

NVDen

217 chars

NVDes

260 chars

Vulnerabilidad de ruta de búsqueda no confiable en el instalador de PhishWall Client Internet Explorer versión Ver 3.7.13 y anteriores permite a atacantes remotos obtener privilegios a través de un caballo de Trolla en una DLL en un directorio no especificado.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P
3.1	Primary	NVD	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H