Akamai NetSession 1.9.3.1 DLL Hijacking

Tempest Security Intelligence Advisory ADV-8/2016 – Akamai Netsession 1.9.3.1 is vulnerable to dll hijacking as it tries to load CSUNSAPI.dll without supplying the complete path. The issue is aggravated because the mentioned dll is missing from its installation. Thus making it possible to hijack the dll and subsequently inject code within the Akamai NetSession process space.

Leave a Reply