CVE-2016-7838

Published June 9th, 2017

View on NVD ↗

CVSS v3

N/A

CVSS v2

6.8

MEDIUM

Affected

PROJECT

Description

Untrusted search path vulnerability in WinSparkle versions prior to 0.5.3 allows remote attackers to execute arbitrary code via a specially crafted executable file in an unspecified directory.

vslavik/winsparkle

App update framework for Windows, inspired by Sparkle for macOS

GitHub

1.46K