ketabrah DLL hijacking

2017.08.09

Mr.Voltage (SE)

Risk: Low

Local: Yes

Remote: No

CVE: N/A

CWE: N/A

##########################
# Exploit Title: ketabrah DLL HIJACKING VULNERABILTY
# Software Link: https://www.ketabrah.ir/go/4
# https://www.youtube.com/channel/UCyngNTHNoRLQkWRn3bQjpJQ
# Discovered By: Mr.voltage
# Version: 3.0.0.0
# Vendor Homepage : https://www.ketabrah.ir/
# Tested on : windows
##########################
+--------------------------+
+ Vulnerable DLL :
+ MoonPdfLib.dll
+ libmupdf.dll
+--------------------------+
Make Malicious dll.
Exploit:
Place a dummy MoonPdfLib.dll or libmupdf.DLL file with the malicious dll . When the file is opened you will get shell.



###################################
#Thanks to : Shayan 72

# Discovered By: Mr.voltage

# skype: mr.voltage@yahoo.com

References:

https://www.youtube.com/channel/UCyngNTHNoRLQkWRn3bQjpJQ

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

ketabrah DLL hijacking

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.