If an attacker places malicious DLL in the user's "Downloads" directory this vulnerability becomes a arbitrary code execution.ġ. This may helpĪttacker to successfully exploit the system if user creates shell as a DLL. And it allows an attacker to load this DLL file of the attacker as choosing that could execute arbitrary code without the user's knowledge.Īttacker can exploit this vulnerability to load a DLL file of theĪttacker's choosing that could execute arbitrary code. The vulnerability exists due to some DLL file is loaded by 'FortiClientOnlineInstaller.exe' improperly. Fortinet Installer Client 5.6 DLL HijackingĪffected Product: Fortinet Installer Client 5.6 for Windows PCĬredit: Souhardya Sardar and Rohit Bankotiįortinet Installe Affected Product: Fortinet Installer Client 5.6 for Windows PCįortinet Installer contains a privilege escalation vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system and gain elevated privileges.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |