DarkLoadLibrary - LoadLibrary For Offensive Operations

LoadLibrary for offensive operations. How does is work? https://www.mdsec.co.uk/2021/06/bypassing-image-load-kernel-callbacks/ Usage DARKMODULE DarkModule = DarkLoadLibrary LOADLOCALFILE, // control flags L"TestDLL.dll", // local dll path, if loading from disk NULL, // DLL Buffer to load from if...

DLLHSC - DLL Hijack SCanner A Tool To Assist With The Discovery Of Suitable Candidates For DLL Hijacking

DLL Hijack SCanner - A tool to generate leads and automate the discovery of candidates for DLL Search Order Hijacking Contents of this repository This repository hosts the Visual Studio project file for the tool DLLHSC, the project file for the API hooking functionality detour, the project file f...

Remote Code Execution (RCE)

FastReport.OpenSource is vulnerable to remote code execution RCE. An attacker can create a new expression or edit an existing one into, for example System.String.Join",", System.IO.Directory.GetDirectories@"c:/" as the library does not use ScriptSecurity feature and mishandle GetType, typeof,...

Design/Logic Flaw

An issue was discovered in FastReport before 2020.4.0. It lacks a ScriptSecurity feature and therefore may mishandle for example GetType, typeof, TypeOf, DllImport, LoadLibrary, and GetProcAddress...

CVE-2020-27998

CVE-2020-27998 affects FastReport prior to 2020.4.0, where the missing ScriptSecurity feature can allow mishandling of scripting constructs such as GetType, typeof, TypeOf, DllImport, LoadLibrary, and GetProcAddress. This creates potential remote-execution/code-injection-like risks as noted in mu...

kerberos package for Node.js code issue vulnerability

The kerberos package for Node.js is a Node.js-based package that provides cross-platform support for kerberos authentication. A security vulnerability exists in the DLL path search process in kerberos package for Node.js versions prior to 1.0.0. An attacker can exploit this vulnerability to execu...

CVE-2020-3925 ServiSign Windows Versions- Remote Code Execution via LoadLibrary

A Remote Code ExecutionRCE vulnerability exists in some designated applications in ServiSign security plugin, as long as the interface is captured, attackers are able to launch RCE and executes arbitrary command on target system via malicious crafted scripts...

Windows/x86 - bitsadmin Download and Execute Shellcode (210 Bytes)

/ ; Windows/x86 - bitsadmin Download and Execute http://192.168.10.10/evil.exe c:\evil.exe Shellcode 210 Bytes ; Shellcode Title : bitsadmin download and execute ; Shellcode Author : Joseph McDonagh ; Date June 26, 2019 ; Shellcode Length 210 ; However, if the application you are exploiting alrea...

Go DLL Injection Vulnerability

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google. An injection vulnerability exists in Google Go 1.12 and earlier versions for Windows platforms, which stems from the program incorrectly using the LoadLibrary function. An attacke...

AZL-78966 CVE-2019-9634 affecting package golang 1.25.7-1

Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection...

Design/Logic Flaw

Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection...

CVE-2019-9634

Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection...

CVE-2019-9634

Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection...

CVE-2019-9634

Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection...

CVE-2019-9634

Removed by vendor...

CVE-2019-9634

Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection...

PT-2019-19768 · Google · Go

Name of the Vulnerable Software and Affected Versions: Go versions prior to 1.12.2 Description: The issue is related to the misuse of certain LoadLibrary functionality in Go on Windows, leading to DLL injection. Recommendations: For Go versions prior to 1.12.2, update to version 1.12.2 or later t...

Design/Logic Flaw

An untrusted search path vulnerability in IBM i Access for Windows versions 7.1 and earlier on Windows can allow arbitrary code execution via a Trojan horse DLL in the current working directory, related to use of the LoadLibrary function. IBM X-Force ID: 152079...

CVE-2018-1888

An untrusted search path vulnerability in IBM i Access for Windows versions 7.1 and earlier on Windows can allow arbitrary code execution via a Trojan horse DLL in the current working directory, related to use of the LoadLibrary function. IBM X-Force ID: 152079...

CVE-2018-1888

An untrusted search path vulnerability in IBM i Access for Windows versions 7.1 and earlier on Windows can allow arbitrary code execution via a Trojan horse DLL in the current working directory, related to use of the LoadLibrary function. IBM X-Force ID: 152079...