Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Nullsoft_scriptable_install_system
(Nullsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-07-03 | CVE-2023-37378 | Nullsoft Scriptable Install System (NSIS) before 3.09 mishandles access control for an uninstaller directory. | Nullsoft_scriptable_install_system | 5.3 | ||
| 2018-10-01 | CVE-2015-9268 | Nullsoft Scriptable Install System (NSIS) before 2.49 has unsafe implicit linking against Version.dll. In other words, there is no protection mechanism in which a wrapper function resolves the dependency at an appropriate time during runtime. | Debian_linux, Nullsoft_scriptable_install_system | 7.8 | ||
| 2018-10-01 | CVE-2015-9267 | Nullsoft Scriptable Install System (NSIS) before 2.49 uses temporary folder locations that allow unprivileged local users to overwrite files. This allows a local attack in which either a plugin or the uninstaller can be replaced by a Trojan horse program. | Debian_linux, Nullsoft_scriptable_install_system | 5.5 |