Full title: NREL BEopt 2.8.0 Insecure Library Loading Arbitrary Code Execution Exploit Category: local exploits Platform: windows BEopt suffers from a DLL Hijacking issue. The vulnerability is caused due to the application loading libraries (sdl2.dll and libegl.dll) in an insecure manner. This can be exploited to load arbitrary libraries by tricking a user into opening a related application file .BEopt located on a remote WebDAV or SMB share. Version 2.8.0 is affected. # 0day.today @ http://0day.today/