EasyRange Ver 1.41 contains an issue with the executable file search path when displaying an extracted file on Explorer, which may lead to loading an executable file resides in the same folder where the extracted file is placed. If this vulnerability is exploited, arbitrary code may be executed with the privilege of the running program. Note that the developer was unreachable, therefore, users should consider stop using EasyRange Ver 1.41.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: jpcert

Published: 2024-03-26T09:29:13.376Z

Updated: 2024-08-02T17:14:14.445Z

Reserved: 2024-03-05T04:06:06.890Z

Link: CVE-2024-28131

cve-icon Vulnrichment

Updated: 2024-08-02T00:48:49.011Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-03-26T10:15:09.270

Modified: 2024-11-21T09:05:52.790

Link: CVE-2024-28131

cve-icon Redhat

No data.