Zabbix Windows Agent compiled with openssl try to reach ssl configuration file on folder c:\openssl-64bit

As this folder is not existing, a local user without privilege is able to create it, and craft a malicious cnf file in order to load malicious dll when zabbix start.

As Zabbix service is running with system account, the malicious process has system privilege.

File attached is a PoC of this problem.