CVE-2021-42110

December 10, 2021

An issue was discovered in Allegro Windows (formerly Popsy Windows) before 3.3.4156.1. A standard user can escalate privileges to SYSTEM if the FTP module is installed, because of DLL hijacking.

Summary:

An issue was discovered in Allegro Windows (formerly Popsy Windows) before 3.3.4156.1. A standard user can escalate privileges to SYSTEM if the FTP module is installed, because of DLL hijacking.

Reference Links(if available):

  • https://excellium-services.com/cert-xlm-advisory/CVE-2021-42110
  • http://www.popsy.com/Documents/Setups/Setup.Allegro.3.3.4154.2.exe

  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)

  • Tags: , , , ,

    You may have missed

    1e302307152497387afff6fa6b36d71a0df8836c14cab306e52478617c0f4c7e

    Subhunter – A Fast Subdomain Takeover Tool

    May 15, 2024
    6b97c369af44e8a8c11908942e8942b9052f1fc05c526e9ad7c870d349f2bbff

    Hakuin – A Blazing Fast Blind SQL Injection Optimization And Automation Framework

    May 15, 2024
    hackerone

    HackerOne Bug Bounty Disclosure: any-user-could-upload-attachments-to-pentest-scoping-form-they-don-t-have-access-to-hillybot

    May 15, 2024
    CISA Logo

    CISA: Adobe Releases Security Updates for Multiple Products

    May 15, 2024
    image 6

    INC Ransom Ransomware Victim: Talley Group

    May 15, 2024