Executable installers are vulnerable^WEVIL (case 42): SoftMaker's FreeOffice installer allows escalation of privilege

Posted by Stefan Kanthak on Dec 29

Hi @ll,

the installers of SoftMaker’s FreeOffice 2016, “freeoffice2016.exe”,
available from <http://www.softmaker.net/down/freeoffice2016.exe>,
and its predecessor FreeOffice 2010, “freeofficewindows.exe”,
available from <http://www.softmaker.net/down/freeofficewindows.exe>,
are (surprise.-) vulnerable!

1. They load CABINET.DLL, MSI.DLL, VERSION.DLL and WINSPOOL.DRV from
their “application…

007 Software