Google Desktop "schannel.dll" DLL Loading Arbitrary Code Execution

  Bookmark
 and Share

Google Desktop is a freely available application that allows users to search the contents of their computer. The application is exposed to an issue that lets attackers execute arbitrary code. The issue arises because the application searches for the "schannel.dll" Dynamic Link Library file in the current working directory. Google Desktop version 5.9.1005.12335 is affected.

Ref: http://blogs.technet.com/b/msrc/archive/2010/08/21/microsoft-security-advisory-2269637-released.aspx

10.49.3 - CVE: Not Available
Platform: Third Party Windows Apps