Home / os / solaris

YouWave Android 4.1.2 dll hijacking vulberability

Posted on 30 November -0001

<HTML><HEAD><TITLE>YouWave Android 4.1.2 dll hijacking vulberability</TITLE><META http-equiv="Content-Type" content="text/html; charset=utf-8"></HEAD><BODY>YouWave Android 4.1.2 dll hijacking is vulnerable from "quserex.dll" download software: https://youwave.com atacker can go to "[C:]Program FilesYouWave Android" and replace Infected dll "quserex.dll" then this vulnerability becomes a remote code execution. ================================ Proof of concept/demonstration: Download YouWave Android 4.1.2 and go to "[C:]Program FilesYouWave Android" Create Infected your dll and save with name of "quserex.dll" Execute "YouWave Android.exe" from Desktop or Install of directory Malicious dll file gets executed. ================================= contact: amirgates76@gmail.com AmirGates-AmirUnhex-Behzad Tohidi</BODY></HTML>

 

TOP