Microsoft Office Groove 2007 is vulnerable to DLL Hijacking. An attacker can exploit this vulnerability by creating a malicious DLL file and placing it in the same directory as the vulnerable application. The malicious DLL file can be named mso.dll.dll and have one of the following extensions: .vcg, .gta. When the vulnerable application is executed, the malicious DLL will be loaded and executed.
Microsoft Address Book is vulnerable to DLL Hijacking. An attacker can create a malicious DLL file and rename it to wab32res.dll, create a file in the same directory with one of the following extensions: .wab, p7c. When the application is launched, the malicious DLL will be executed.
This exploit is for Microsoft Visio 2003 and allows attackers to execute arbitrary code by hijacking a vulnerable DLL. The exploit is triggered by creating a file with the .vtx extension in the same directory as the malicious DLL. When the vulnerable application is launched, the malicious DLL is loaded and the code is executed.
This exploit works with avast license files (.avastlic). The attacker can generate a msfpayload DLL and spawn a shell. The exploit is based on the DLL mfc90loc.dll which is put in the same directory of an avast license file.
Clansphere offers some nice features for you to easily set up and maintain your proper clan site within minutes!
This exploit allows an attacker to execute arbitrary code by hijacking a vulnerable DLL file (Wintab32.dll) in Adobe Photoshop CS2. As far as the author can tell, every file extension esoteric to Photoshop (documents, plug-ins, brushes, etc.) is affected, but image files (.png, .jpg, .bmp) are not affected. Strangely enough, other file types such as .php and .c with Photoshop (only ones the author tested) are affected.
This exploit allows an attacker to execute arbitrary code on a vulnerable system by hijacking a DLL file associated with Adobe Dreamweaver CS5. The attacker can create a malicious DLL file and place it in the same directory as a file handled by Dreamweaver, such as a .php or .asp file. When the vulnerable application is launched, the malicious DLL will be executed, allowing the attacker to run arbitrary code.
This exploit allows an attacker to execute arbitrary code on a vulnerable system by hijacking a DLL file associated with BS.Player. The attacker can create a malicious DLL file and place it in the same directory as a media file handled by BS.Player. When the media file is opened, the malicious DLL will be executed.
A vulnerability was found in the Simple Forum PHP software, which allows attackers to insert HTML/JavaScript codes into the http://server/demo_guestbook.php?act=new page. This vulnerability works if the Approval option on http://www.simpleforumphp.com/demo_forum.php act=topic_options is not checked.
This exploit is a DLL hijacking vulnerability in Adobe Dreamweaver CS4. It allows an attacker to execute arbitrary code on a vulnerable system by placing a malicious DLL in the same directory as the vulnerable application. The vulnerable extensions are .asp .asa. aspx .php .php5 .cfm .tpl .asr .jsp (etc).
Services By CQR