Re: Executable installers are vulnerable^WEVIL (case 26): the installer of GIMP for Windows allows arbitrary (remote) and escalation of privilege

Posted by Stefan Kanthak on Feb 25

“Jernej Simončič” <jernej|s-os () eternallybored org> wrote:

UXTheme.dll is loaded when “visual styles” and/or “themes” are
DISABLED (which is the case in my test systems), either via GUI, via

[HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionThemeManager]
“ThemeActive”=”0”

or via stopping/disabling the “themes” service:

NET.EXE Stop Themes
SC.EXE Config Themes…

007 Software