PGP Desktop DLL Loading Arbitrary Code Execution Vulnerability

PGP Desktop DLL Loading Arbitrary Code Execution Vulnerability

References:

Application DLL Load Hijacking (HD Moore)
Exploiting DLL Hijacking Flaws (hdm)
Microsoft Security Advisory 2269637 Released (Microsoft)
More information about the DLL Preloading remote attack vector (Microsoft)
PGP Homepage (PGP Corporation)
PGP Desktop version 9.10.x-10.0.0 Insecure DLL Hijacking Vulnerability (tsp.dll, (YGN Ethical Hacker Group )
Microsoft Security Advisory (2269637) (Microsoft)

Privacy Statement
Copyright 2010, SecurityFocus