Untrusted search path vulnerability in the installer of Visual Studio Code allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.Referenceshttps://blogs.technet.microsoft.com/srd/2018/04/04/triaging-a-dll-planting-vulnerability/http://jvn.jp/en/jp/JVN91151862/index.htmlhttp://www.securityfocus.com/bid/104563
