CVE-2018-5202
N/A
N/A
Summary
SKCertService 2.5.5 and earlier contains a vulnerability that could allow remote attacker to execute arbitrary code. This vulnerability exists due to the way .dll files are loaded by SKCertService. It allows an attacker to load a .dll of the attacker's choosing that could execute arbitrary code without the user's knowledge.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| SIGNKOREA | SKCertService | SKCertService <= 2.5.5 | affected |
Weaknesses
- Remote code execution
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.