EasyRange Ver 1.41 contains an issue with the executable file search path when displaying an extracted file on Explorer, which may lead to loading an executable file resides in the same folder where the extracted file is placed. If this vulnerability is exploited, arbitrary code may be executed with the privilege of the running program. Note that the developer was unreachable, therefore, users should consider stop using EasyRange Ver 1.41.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://jvn.jp/en/jp/JVN13113728/index.html |
History
No history.
MITRE
Status: PUBLISHED
Assigner: jpcert
Published: 2024-03-26T09:29:13.376Z
Updated: 2024-08-02T17:14:14.445Z
Reserved: 2024-03-05T04:06:06.890Z
Link: CVE-2024-28131
Vulnrichment
Updated: 2024-08-02T00:48:49.011Z
NVD
Status : Awaiting Analysis
Published: 2024-03-26T10:15:09.270
Modified: 2024-11-21T09:05:52.790
Link: CVE-2024-28131
Redhat
No data.