An Unsafe Search Path vulnerability in FortiClient Online Installer (Windows version before 6.0.6) may allow an unauthenticated, remote attacker with control over the directory in which FortiClientOnlineInstaller.exe resides to execute arbitrary code on the system via uploading malicious .dll files in that directory.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/advisory/FG-IR-19-060 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2019-05-28T21:42:19
Updated: 2024-08-04T20:01:51.399Z
Reserved: 2019-01-07T00:00:00
Link: CVE-2019-5589
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-05-28T22:29:00.670
Modified: 2019-05-29T16:07:09.427
Link: CVE-2019-5589
Redhat
No data.