[Full-disclosure] DLL hijacking with Autorun on a USB drive
Mario Vilas
mvilas at gmail.com
Fri Aug 27 17:38:48 BST 2010
On Fri, Aug 27, 2010 at 5:27 PM, matt <matt at attackvector.org> wrote:
> 2) This opens the door for more widespread attacks. In the case of
> PowerPoint, one could simply find a share on a network that contains a large
> amount of ppt files and save his/her rogue DLL file in that directory.
> Then, whenever anyone opens one of the files, the attacker gets immediate
> access to the victims PC without the victim having any idea.
This is not any different from what worms used to do back in 2000...
http://dpnm.postech.ac.kr/research/04/nsri/papers/010919-Analysis-Nimda.pdf
(See page 4)
Full-Disclosure is hosted and sponsored by Secunia.