AhnLab warns that DreamSecurity MagicLine4NX versions 1.0.0.1 through 1.0.0.26 contain a remotely exploitable code-execution vulnerability in a certificate-authentication component that commonly remains resident via MagicLine4NXServices.exe. AhnLab observed exploitation through its ASD telemetry: attackers injected into svchost.exe and then downloaded and executed malware. The advisory recommends removing vulnerable installations or updating promptly and notes detection as Injection/MDP.Lazarus.M4503, with detailed IOCs reserved for AhnLab TIP subscribers.