IBM Security Bulletin: InstallShield generates installation executables which are vulnerable to an DLL-planting vulnerability affect AppScan Standard (CVE-2016-2542)

Flexera InstallShield could allow a remote attacker to execute arbitrary code on the system. The application does not directly specify the fully qualified path to a dynamic-linked library (schannel.dll) when running on Microsoft Windows. By persuading a victim...

from IBM Product Security Incident Response Team http://ift.tt/1NSj7bb