Home Tools Exploits & CVE's Gom Player 2.3.92.5362 DLL Hijacking

Gom Player 2.3.92.5362 DLL Hijacking

January 9, 2024

224

Gom Player version 2.3.92.5362 suffers from a dll hijacking vulnerability.

# Exploit Title: Gom Player 2.3.92.5362 - nvcuda.dll DLL Hijacking
# Date: 2023-01-03
# Exploit Author: Yehia Elghaly (Mrvar0x)
# Vendor Homepage: https://www.mrvar0x.com/
# Version: 2.3.92.5362
# Tested on: Windows 7, Windows 10

A DLL hijacking vulnerability has been discovered Gom Player 2.3.92.5362. When a user loads the application it will try to load nvcuda.dll missing DLL from the same directory. Using a crafted DLL from MSFVENOM, it is possible to execute arbitrary code in the context of the current logged in user.


Gom Player 2.3.92.5362 can also load any malicious DLL with any given name from any directory wihtout proper checking the loaded DLL for example. Open Gom Player -- Settings -- Filter/Codec -- Render Filter -- Advanced rendering method -- Add- Browse -- Then loaded lol.dll which is generated by MSFVENOM and it will execute a reverse shell

Gom Player 2.3.92.5362 DLL Hijacking

Follow us on Instagram @thecyberpost

EDITOR PICKS

Palo Alto PAN-OS Command Execution / Arbitrary File Creation

Palo Alto Networks PAN-OS Unauthenticated Remote Code Execution

Gambio Online Webshop 4.9.2.0 Remote Code Execution

POPULAR POSTS

Restaurant Reservation System Patches Easy-to-Exploit XSS Bug

Sniffle – A Sniffer For Bluetooth 5 And 4.X LE

Domhttpx – A Google Search Engine Dorker With HTTP Toolkit Built...

POPULAR CATEGORY

Huawei MBAMainService Unquoted Service Path

Backdoor.Win32.Jokerdoor Insecure Permissions

Travelable 1.0 Cross Site Scripting