Quark Cloud Drive v3.23.2 has a DLL Hijacking vulnerability. This vulnerability stems from the insecure loading of system libraries. Specifically, the application does not validate the path or signature of [regsvr32.exe] it loads. An attacker can place a crafted malicious DLL in the applications startup directory, which will be loaded and executed when the user launches the program.
Weakness
A class has a cloneable() method that is not declared final, which allows an object to be created without calling the constructor. This can cause the object to be in an unexpected state.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Quark_cloud_drive | Quark | 3.23.2 (including) | 3.23.2 (including) |