Untrusted search path vulnerability in the installers of multiple SEIKO EPSON products allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
References
Link | Resource |
---|---|
https://jvn.jp/en/jp/JVN26835001/index.html | Third Party Advisory |
https://www.epson.jp/support/misc_t/201119_oshirase.htm | Vendor Advisory |
https://www.epson.jp/support/pdf/fy20-001_softwareList_20201106_b.pdf | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
History
No history.
Information
Published : 2020-11-24 07:15
Updated : 2024-02-28 18:08
NVD link : CVE-2020-5674
Mitre link : CVE-2020-5674
CVE.ORG link : CVE-2020-5674
JSON object : View
Products Affected
epson
- print_layout
- net_config_se
- ec-01
- easy_photo_print
- connect
- status_monitor_3
- multi-print_quicker
- creativity_suite
- ec-01_firmware
- pm-t990_integrated_installer
- color_calibration_utility
- scan_icm_updater
- print_image_framer_tool
- prolab_print
- remote_printer_driver
- net_config
- web_to_page
- universal_print_driver
- easy_settings
- e-photo
- imaging_workshop
- scanner_driver
- status_monitor_2
- link2
- net_software_development_kit
- photoquicker
- photostarter
- colorio_easy_print
- net_print
- photolier
- webconfig
- album_print
- colorbase
microsoft
- windows
- windows_me
- windows_98
CWE
CWE-427
Uncontrolled Search Path Element