SB2019010205 - Insecure DLL loading in ExifTool
Published: January 2, 2019 Updated: May 10, 2021
Security Bulletin ID
SB2019010205
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Insecure DLL loading (CVE-ID: CVE-2018-20211)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to the application loads DLL libraries in an insecure manner. A local user can create a "%TEMP%\par-%username%\cache-exiftool-8.32" folder with a victim's username, and then place a malicious ws32_32.dll file into this new folder. the library is loaded with privileges of the victim user once the application is launched.
Remediation
Install update from vendor's website.