Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Untrusted search path vulnerability in TechSmith Snagit all versions 10.x and 11.x allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a snag, snagcc, or snagprof file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TechSmith Snagit 安全漏洞
Vulnerability Description
TechSmith SnagIT是美国TechSmith公司的一套屏幕捕获软件。该软件主要用于在屏幕上截图、录制视频等。 TechSmith Snagit 10.x版本和11.x版本中存在非信任搜索路径漏洞。本地用户和远程攻击者可以借助与snag,snagcc文件或者snagprof文件位于同一个文件夹下的dwmapi.dll木马执行任意代码和DLL劫持攻击。
CVSS Information
N/A
Vulnerability Type
N/A