Uploaded image for project: 'Qt Installer Framework'
  1. Qt Installer Framework
  2. QTIFW-2445

Fix potential vulnerability for DLL Hijacking in the IFW

    XMLWordPrintable

    Details

    • Sprint:
      Qt Installer Sprint 47, Qt Installer Sprint 48

      Description

      The installer tool that (for Windows) was created using Qt Installer Framework

      • When the installer tool is launched, since it is raised to Administrator, the system is vulnerable to DLL Hijacking based on the order of searching directories for DLLs
      • Qt Installer Framework needs to be modified to apply either of the two workarounds below

        Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

          Activity

            People

            Assignee:
            arttu.tarkiainen Arttu Tarkiainen
            Reporter:
            tpyssysa Tino Pyssysalo
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Gerrit Reviews

                There are no open Gerrit changes