CVE-2017-5161

An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path element (DLL Hijacking) vulnerability has been identified. Exploitation of this vulnerability could give an attacker access to the system with the same level of privilege as the application that utilizes the malicious DLL.
References
Link Resource
http://www.securityfocus.com/bid/96119 Third Party Advisory VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-17-038-01 Mitigation Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:sielcosistemi:winlog_lite:*:*:*:*:*:*:*:*
cpe:2.3:a:sielcosistemi:winlog_pro:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-02-13 21:59

Updated : 2024-02-28 15:44


NVD link : CVE-2017-5161

Mitre link : CVE-2017-5161

CVE.ORG link : CVE-2017-5161


JSON object : View

Products Affected

sielcosistemi

  • winlog_pro
  • winlog_lite
CWE
CWE-427

Uncontrolled Search Path Element