본문내용 바로가기 메인메뉴 바로가기 하단내용 바로가기

Security Advisory

Security Advisory Detail
CVE-2019-19161 | To be able to change Dlls to preload with missing support for integrity check vulnerability MIPLATFORM ActiveX of TOBESOFT.CO.LTD,2020.06.29
□ Overview
 o Arguments modification via missing support for integrity check vulnerability of RAONWIZ Inc K Upload
Vulnerability type Impact Severity CVSS Score CVE ID
Missing support for integrity check Dll Preloading HIGH 7.2 CVE-2019-19161
 
□ Description
 o To be able to change Dlls to random files with missing support for integrity check vulnerability causes preloading random DLLs and injection on it.
 
□ Affected Products
Product Version Platform
CyMiInstaller322 v2016.5.26.1 and prior windows 7/8/10
 
□ Solution
 o Update software over 2016.5.26.2 version or over then it.
 
□ Acknowledgement
 o Thanks to Jeongun Baek for this vulnerability report.
 



□ 작성 : 침해사고분석단 취약점분석팀