Aura Video Converter 1.6.3 - DLL Hijacking Exploit

Type vulnerlab
Reporter ZwX - ( ) [ ]
Modified 2016-10-04T00:00:00


A local dll injection vulnerability has been discovered in the official Aura Video Converter v1.6.3 software. The issue allows local attackers to inject code to vulnerable dynamic link libraries to compromise the process or to gain higher system access privileges. Thus allows a local attacker to compromise the system process of the affected software to followup with manipulations.

Vulnerable Software: [+] Aura Video Converter

Vulnerable Version(s): [+] v1.6.3

Vulnerable Libraries: [+] nvcuvenc.dll