We received a security vulnerability report that went roughly like this:
There is a security vulnerability in the X component.
It loads shell32.dll from the current directory,
thereby making it vulnerable to a current directory attack.
Here is a sample program that illustrates the problem.
Copy a rogue shell32.dll into the current ...