A DLL hijacking vulnerability in the installed for Quick Heal Total Security before 12.1.1.27 allows a local malicious user to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature of the DLLs it tries to load.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
quickheal total security |