Saturday, February 14, 2015

Google Chrome Insecure DLL Loading Code Execution

Google Chrome tries to load cryptbase.dll by default from
C:\Program Files\Google\Chrome\Application\ but the dll is not part of the installation.
Chrome fails with DLL Not Found error.

If we copy any malicious DLL renamed as cryptbase.dll to C:\Program Files\Google\Chrome\Application\
Chrome will load and execute the DLL controlled by malicious user.


The source code which I used for building the DLL is at
http://blog.disects.com/2014/08/dll-injection-executing-and-testing-dlls.html

Tested on
        Chrome 39.0.2171.95m (latest is also vulnerable)
        Windows 7 Ultimate N SP1

Reported to Google but they didn't consider it stating as Local exploit.

1 comment:

  1. A developer’s platform permits players entry to leaderboards 파라오바카라 and prize tables, and sends these out to on-line players to maintain them aware of their rank and progress. ● Stacked Wild - wilds which are be} "stacked" one on prime of another on the reels giving the notion that is has a higher chance of getting a number of} wild symbols on the reels. ●Minor Symbols- These symbols give players more frequent wins, albeit being smaller, as they have much less value. Minor symbols permit players to win frequent, but smaller amounts. One way determine out|to determine} which video games to attempt is to see what everyone else is half in}. We have 4 slots that see more action than all the remaining.

    ReplyDelete