CVE-2016-4902
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2016-4902
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Untrusted search path vulnerability in The Public Certification Service for Individuals "The JPKI user's software (for Windows 7 and later)" Ver3.0.1 and earlier, The Public Certification Service for Individuals "The JPKI user's software (for Windows Vista)" Ver3.0.1 and earlier and The Public Certification Service for Individuals "The JPKI user's software" Ver2.6 and earlier allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
J-LIS JPKI Client Software 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
J-LIS JPKI是日本Japan Agency for Local Authority Information Systems(J-LIS)公司的一套基于PKI(公钥基础设施)平台的个人公开认证服务软件。该软件支持查看自签名证书、验证数字签名等。Client Software是其中的客户端软件。 J-LIS JPKI中的Client Software存在不可信的搜索路径漏洞。远程攻击者可借助目录下恶意的DLL利用该漏洞获取权限。以下版本受到影响:JPKI (for Windows 7及之后的版本) 3
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Japan Agency for Local Authority Information Systems | The Public Certification Service for Individuals "The JPKI user's software (for Windows 7 and later)" | Ver3.0.1 and earlier | - | |
| Japan Agency for Local Authority Information Systems | The Public Certification Service for Individuals "The JPKI user's software (for Windows Vista)" | Ver3.0.1 and earlier | - | |
| Japan Agency for Local Authority Information Systems | The Public Certification Service for Individuals "The JPKI user's software" | Ver2.6 and earlier | - |
II. Public POCs for CVE-2016-4902
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2016-4902
请登录查看更多情报信息。
IV. Related Vulnerabilities
V. Comments for CVE-2016-4902
No comments yet