The Art of Exploitation: DLL Hijacking

DLL hijacking (CWE-426: Untrusted Search Path) is a common technique for attackers to escalate privileges from a Windows Standard User to Administrator or SYSTEM (depending on privileges the application requires at runtime).