An issue in Helakuru Desktop Application v1.1 allows a local attacker to execute arbitrary code via the lack of proper validation of the wow64log.dll file.
References
Link | Resource |
---|---|
https://clement.notin.org/blog/2020/09/12/CVE-2020-7315-McAfee-Agent-DLL-injection/ | Not Applicable |
https://github.com/surajhacx/HelakuruV.1.1-DLLHijack | Exploit |
https://medium.com/%40xNEED/dll-hijacking-jagexlauncher-819599165822 | Not Applicable |
https://www.exploit-db.com/exploits/51461 | Not Applicable |
Configurations
History
No history.
Information
Published : 2024-10-22 16:15
Updated : 2024-10-30 21:19
NVD link : CVE-2024-48605
Mitre link : CVE-2024-48605
CVE.ORG link : CVE-2024-48605
JSON object : View
Products Affected
helakuru
- helakuru
CWE
CWE-427
Uncontrolled Search Path Element