Unrated severityNVD Advisory· Published Sep 14, 2020· Updated Aug 4, 2024

DLL Hijacking Vulnerabilities During Installation of LG Electronics Software

CVE-2020-7807

Description

A vulnerability that can hijack a DLL file that is loaded during products(LGPCSuite_Setup, IPSFULLHD, LG_ULTRAWIDE, ULTRA_HD_Driver Setup) installation into a DLL file that the hacker wants. Missing Support for Integrity Check vulnerability in ____COMPONENT____ of LG Electronics (LGPCSuite_Setup), (IPSFULLHD, LG_ULTRAWIDE, ULTRA_HD_Driver Setup) allows ____ATTACKER/ATTACK____ to cause ____IMPACT____. This issue affects: LG Electronics; LGPCSuite_Setup : 1.0.0.3 on Windows(x86, x64); IPSFULLHD, LG_ULTRAWIDE, ULTRA_HD_Driver Setup : 1.0.0.9 on Windows(x86, x64).

Affected products

LG Electronics/LGPCSuite_Setupllm-create
Range: =1.0.0.3
LG Electronics/IPSFULLHDllm-create
Range: =1.0.0.9
LG Electronics/LG_ULTRAWIDEllm-create
Range: =1.0.0.9
LG Electronics/ULTRA_HD_Driver Setupllm-create
Range: =1.0.0.9
LG Electronics/(LGPCSuite_Setup), (IPSFULLHD, LG_ULTRAWIDE, ULTRA_HD_Driver Setup)v5
Range: IPSFULLHD, LG_ULTRAWIDE, ULTRA_HD_Driver Setup.exe 1.0.0.3

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lgsecurity.lge.commitrex_refsource_MISC
www.boho.or.kr/krcert/secNoticeView.domitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000