VYPR
High severity7.8NVD Advisory· Published Aug 18, 2017· Updated Jun 17, 2026

CVE-2017-11160

CVE-2017-11160

Description

Multiple untrusted search path vulnerabilities in installer in Synology Assistant before 6.1-15163 on Windows allows local attackers to execute arbitrary code and conduct DLL hijacking attack via a Trojan horse (1) shfolder.dll, (2) ntmarta.dll, (3) secur32.dll or (4) dwmapi.dll file in the current working directory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:synology:assistant:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:synology:assistant:*:*:*:*:*:*:*:*range: <=6.1-15030
    • (no CPE)range: <6.1-15163

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.