CVE-2020-18169
- EPSS 0.05%
- Veröffentlicht 26.07.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 05:08:27
A vulnerability in the Windows installer XML (WiX) toolset of TechSmith Snagit 19.1.1.2860 allows attackers to escalate privileges. NOTE: Exploit of the Snagit installer would require the end user to ignore other safety mechanisms provided by the Hos...
CVE-2020-18171
- EPSS 0.04%
- Veröffentlicht 26.07.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 05:08:27
TechSmith Snagit 19.1.0.2653 uses Object Linking and Embedding (OLE) which can allow attackers to obfuscate and embed crafted files used to escalate privileges. NOTE: This implies that Snagit's use of OLE is a security vulnerability unto itself and i...
CVE-2020-11541
- EPSS 0.09%
- Veröffentlicht 08.05.2020 14:15:11
- Zuletzt bearbeitet 21.11.2024 04:58:06
In TechSmith SnagIt 11.2.1 through 20.0.3, an XML External Entity (XXE) injection issue exists that would allow a local attacker to exfiltrate data under the local Administrator account.
CVE-2019-13382
- EPSS 0.29%
- Veröffentlicht 26.07.2019 13:15:12
- Zuletzt bearbeitet 21.11.2024 04:24:49
UploaderService in SnagIT 2019.1.2 allows elevation of privilege by placing an invalid presentation file in %PROGRAMDATA%\TechSmith\TechSmith Recorder\QueuedPresentations and then creating a symbolic link in %PROGRAMDATA%\Techsmith\TechSmith Recorder...
CVE-2010-3130
- EPSS 5.71%
- Veröffentlicht 26.08.2010 18:36:35
- Zuletzt bearbeitet 11.04.2025 00:51:21
Untrusted search path vulnerability in TechSmith Snagit all versions 10.x and 11.x allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the sam...