High severity7.3NVD Advisory· Published Mar 15, 2017· Updated Jun 17, 2026
CVE-2017-6189
CVE-2017-6189
Description
Untrusted search path vulnerability in Amazon Kindle for PC before 1.19 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse DLL in the current working directory of the Kindle Setup installer.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:amazon:kindle_for_pc:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:amazon:kindle_for_pc:*:*:*:*:*:*:*:*range: <=1.17.44183
- (no CPE)range: <1.19
Patches
Vulnerability mechanics
References
3- packetstormsecurity.com/files/141366/Amazon-Kindle-DLL-Hijacking.htmlnvdThird Party AdvisoryVDB Entry
- seclists.org/fulldisclosure/2017/Feb/71nvdMailing ListThird Party Advisory
- www.securityfocus.com/bid/96476nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.