Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2017-16690

UNKNOWN
Published 2017-12-12T14:00:00Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2017-16690. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

A malicious DLL preload attack possible on NwSapSetup and Installation self-extracting program for SAP Plant Connectivity 2.3 and 15.0. It is possible that SAPSetup / NwSapSetup.exe loads system DLLs like DWMAPI.dll (located in your Syswow64 / System32 folder) from the folder the executable is in and not from the system location. The desired behavior is that system dlls are only loaded from the system folders. If a dll with the same name as the system dll is located in the same folder as the executable, this dll is loaded and code is executed.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

SAP

SAP Plant Connectivity

Affected Versions:

2.3; 15.0

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-wvmg-58g2-r2x7

Advisory Details

A malicious DLL preload attack possible on NwSapSetup and Installation self-extracting program for SAP Plant Connectivity 2.3 and 15.0. It is possible that SAPSetup / NwSapSetup.exe loads system DLLs like DWMAPI.dll (located in your Syswow64 / System32 folder) from the folder the executable is in and not from the system location. The desired behavior is that system dlls are only loaded from the system folders. If a dll with the same name as the system dll is located in the same folder as the executable, this dll is loaded and code is executed.

CVSS Scoring

CVSS Score

7.5

CVSS Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2017-16690
WEB https://blogs.sap.com/2017/12/12/sap-security-patch-day-december-2017
WEB https://launchpad.support.sap.com/#/notes/2529480
WEB http://www.securityfocus.com/bid/102145

Advisory provided by GitHub Security Advisory Database. Published: May 14, 2022, Modified: April 20, 2025

References

http://www.securityfocus.com/bid/102145
https://blogs.sap.com/2017/12/12/sap-security-patch-day-december-2017/
https://launchpad.support.sap.com/#/notes/2529480
Published: 2017-12-12T14:00:00Z
Last Modified: 2024-09-16T19:50:53.945Z
Copied to clipboard!