NSIS vulnerable to Dll hijacking SHFOLDER.DLL
I found out that NSISPortableANSI 2.5.1 loads a DLL (SHFOLDER) without supplying the absolute path, thus vulnerable to DLL Hijack. It may be possible for an attacker to place an arbitrary DLL in specific paths in order to execute malicious code in the context of the loading process.
I found this while analyzing wireshark portable and skype portable, the issue might affects other portable apps.
- Read more about NSIS vulnerable to Dll hijacking SHFOLDER.DLL
- 2 comments
- Log in or register to post comments