Icecream screen recorder DLL Hijacking

2017.09.18
ir alone421 (IR) ir
Risk: Medium
Local: Yes
Remote: No
CVE: N/A
CWE: N/A

[*]=============[*] [+] Exploit Title: Icecream screen recorder DLL Hijacking [+] Software Link: https://icecreamapps.com/Download-Screen-Recorder/ [+] Exploit author: alone421 [+] Vendor Homepage: https://icecreamapps.com/ [+] Version: 4.96 [+] Tested on windows [*]=============[*] Product: Meet Icecream Screen Recorder, a tool that enables you to capture any area of your screen either as a screenshot or a video file. The intuitive and easy-to-use software offers a complete suite of tools and options for professional screen capture with audio. With our screen recording software you can record webinars, games and Skype videos in HD, and much more in a quick and hassle-free way. Vulnerability Description: Icecream screen recorder is vulnerable to Insecure DLL Hijacking vulnerability. DLL Hijacking is an attack that exploits the way some Windows applications search and load Dynamic Link Libraries. Vulnerable DLL: - QtAV1.dll - Qt5widgets.dll - Qt5Gui.dll Make Malicious dll. Exploit: Place a dummy Qt5Gui.dll or Qt5widgets.DLL file with the malicious dll . When the file is opened you will get shell. [*]=============[*] [+] Discovered By: alone421 [+] alone421@yahoo.com [*]=============[*]


Vote for this issue:
100%
0%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2018, cxsecurity.com

 

Back to Top