Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple untrusted search path vulnerabilities in installer in Synology Photo Station Uploader before 1.4.2-084 on Windows allows local attackers to execute arbitrary code and conduct DLL hijacking attack via a Trojan horse (1) shfolder.dll, (2) ntmarta.dll, (3) secur32.dll or (4) dwmapi.dll file in the current working directory.
CVSS Information
N/A
Vulnerability Type
对搜索路径元素未加控制
Vulnerability Title
Synology Photo Station Uploader for Windows 安全漏洞
Vulnerability Description
Synology Photo Station Uploader for Windows是群晖科技(Synology)公司的一套用于在互联网上共享图片、视频和博客的解决方案。 基于Windows平台的Synology Photo Station Uploader 1.4.2-084之前的版本中存在不可信的搜索路径漏洞。本地攻击者可借助当前工作目录下恶意的shfolder.dll、ntmarta.dll、secur32.dll或dwmapi.dll文件利用该漏洞执行任意代码,执行DLL劫持攻击。
CVSS Information
N/A
Vulnerability Type
N/A