Description
An issue of a hijacked DLL was found in Notepad++. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a sciexer.dll, which is replaced by version of sciexer.dll built by CIA.
Technical details
This vulnerability has been fixed by adding a certificate validation in sciexer.exe before loading it.
NB: This vulnerability have no public CVSS rating so rating can be changed by the time.
Original advisories
CVE list
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!