DLL Preload Vulnerability in SAP Plant Connectivity Software
CVE-2017-16690

7.8HIGH

Key Information:

Vendor
SAP
Status
SAP Plant Connectivity
Vendor
CVE Published:
12 December 2017

Summary

A vulnerability exists in the SAP Plant Connectivity 2.3 and 15.0 software that allows for a DLL preload attack. The affected program, NwSapSetup.exe, might load system DLLs such as DWMAPI.dll from its current directory rather than from the designated system directories. If a maliciously crafted DLL with the same name as the legitimate system DLL is placed in the same directory as the executable, it will be loaded, potentially allowing unauthorized code execution. This could lead to exploitation if an attacker manages to take advantage of this flaw, thereby compromising the integrity and security of the system. Users are advised to follow recommended security practices and update their installations to mitigate this risk.

Affected Version(s)

SAP Plant Connectivity 2.3; 15.0

References

http://www.securityfocus.com/bid/102145
vdb-entryx_refsource_BID
https://blogs.sap.com/2017/12/12/sap-security-patch-day-d...
x_refsource_CONFIRM
https://launchpad.support.sap.com/#/notes/2529480
x_refsource_CONFIRM

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.