← voltar
CVE-2015-9267

CVE-2015-9267

EPSS 0.4%
Nullsoft Scriptable Install System (NSIS) before 2.49 uses temporary folder locations that allow unprivileged local users to overwrite files. This allows a local attack in which either a plugin or the uninstaller can be replaced by a Trojan horse program.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://jvn.jp/en/jp/JVN68418039/index.htmlhttps://lists.debian.org/debian-lts-announce/2018/11/msg00041.htmlhttps://sourceforge.net/p/nsis/bugs/1125/