Vulnerability Title: AppSamvid Local Code Execution Vulnerability (ntmarta.dll)
Affected Product: AppSamvid
Product Homepage: https://cdac.in/index.aspx?id=cs_eps_usb_pra
CVE-ID : NA
Author: Sachin Wagh (@tiger_tigerboy)
AppSamvid contains a DLL hijacking vulnerability that could allow an
unauthenticated attacker to execute arbitrary code on the targeted system.
This vulnerability exists due to some DLL file is loaded by
aAppSamvid.2.0.1.Win7_64.exea improperly. And it allows an attacker to load
(ntmarta.dll) DLL file of the attackeras choosing that could execute
arbitrary code without the user's knowledge.
Attacker can exploit the vulnerability to load a DLL file of the attacker's
choosing that could execute arbitrary code. This may help attacker to
Successful exploits the system if user creates shell as a DLL.
1. Create malicious dll file and save it as 'ntmarta.dll' in your
2. Download AppSamvid (https://cdac.in/index.aspx?id=cs_eps_usb_pra) and save it in your "Downloads" directory.
3. Execute AppSamvid from your "Downloads" directory.
4. Malicious dll file gets executed.
*Sachin Wagh (tiger_tigerboy)*