<p>The installers used to install several Siemens products are affected
by a DLL hijacking vulnerability. This could allow an attacker to
execute arbitrary code when a legitimate user installs an application
that uses the affected installer component. This vulnerability poses a
risk only during setup and installation phase of the affected
applications downloaded e.g. via OSD (Online Software Delivery).</p>
<p>Siemens has released new versions for several affected products and
recommends using the latest versions during setup and installation.
Siemens is preparing further fix versions and recommends specific
countermeasures for products where fixes are not, or not yet
available.</p>
Source link
