7-Zip 16 DLL Hijacking

Microsoft Windows Environment Variable Expansion Issue Leads To Remote DLL Hijack Attack vector: 7-ZIP v.16 7-ZIP v.16 and possibly other softwares that utilizes the HTML Help System are prone to a remote DLL hijacking issue which leads to arbitrary code execution. PoC attached. because the OS...

Code injection

winpm-32.exe in Pegasus Mail aka Pmail v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. For example, if ssgp.dll is on the desktop and executes arbitrary code in the DllMain function, then clicking on a mailto: link on a remote web page triggers th...

The use of EMET vulnerability to disable EMET protection-vulnerability warning-the black bar safety net

Microsoft developed the enhanced mitigation experience Toolkit（EMET）is a user-mode program to add security mitigation measures of the project, rather than the built-inoperating systemin the program. It is as a DLL in the“protected”program run through the code for various changes, so that the...

Managed to inject in-depth study-vulnerability warning-the black bar safety net

This is what I posted in the hacker line of Defense of the 2 0 0 8 year 1 2 on an article, here it is on the network for starters. The attachment is I wrote a tool“the Super SpySuperSpy”, including a window-detection function, and even be able to detect the VC's own SPY++can't detect the window; ...