Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple untrusted search path vulnerabilities in NCP Secure Enterprise Client before 9.21 Build 68, Secure Entry Client before 9.23 Build 18, and Secure Client - Juniper Edition before 9.23 Build 18 allow local users to gain privileges via a Trojan horse (1) dvccsabase002.dll, (2) conman.dll, (3) kmpapi32.dll, or (4) ncpmon2.dll file in the current working directory, as demonstrated by a directory that contains a .pcf or .spd file. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
NCP 多款产品多个不可信搜索路径漏洞
Vulnerability Description
NCP Secure Enterprise Client 9.21 Build 68之前版本、Secure Entry Client 9.23 Build 18之前版本以及Secure Client - Juniper Edition 9.23 Build 18之前版本中存在多个不可信搜索路径漏洞。本地攻击者可利用这些漏洞通过当前目录(如包含.pcf或.spd文件的目录)下的Trojan木马(1)dvccsabase002.dll(2)conman.dll(3)kmpapi32.dll或(4)ncpmon
CVSS Information
N/A
Vulnerability Type
N/A