Blog | G5 Cyber Security

Details Emerge on Severe Windows App Flaws

Metasploit s HD Moore has released technical details on a severe application DLL load hijacking problem that haunts more than 40 Windows software programs. Moore stumbled on the issue while researching the recent LNK zero-day flaw. Moore: Every affected vendor will need to release a product update to completely patch this issue. Moore has been in touch with Microsoft to discuss his findings and the company said it will offer some public information and guidance about the vulnerability later today. The audit kit uses a local directory to test for the issue and the generated proof-of-concept files can load from a local or remote directory.

Source: https://threatpost.com/details-emerge-severe-windows-app-flaws-082310/74366/

Exit mobile version