[Paper] Reflective Dll Injection

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: [Paper] Reflective Dll Injection
From: stephen_fewer@xxxxxxxxxxxxxxxxxxx
Date: Fri, 31 Oct 2008 11:54:15 -0600
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

Hello, Just released a short paper on Reflective Dll Injection.

Abstract: Reflective DLL injection is a library injection technique in which 
the concept of reflective programming is employed to perform the loading of a 
library from memory into a host process. As such the library is responsible for 
loading itself by implementing a minimal Portable Executable (PE) loader.

You can download the paper here:
http://www.harmonysecurity.com/files/HS-P005_ReflectiveDllInjection.pdf

And the PoC code here:
http://www.harmonysecurity.com/files/ReflectiveDllInjection_v1.0.zip

Support for Reflective DLL Injection has been added to Metasploit in the form 
of a payload stage and a modified VNC DLL (both are currently in the 
development tree).

Cheers

Stephen Fewer

Prev by Date: iDefense Security Advisory 10.31.08: OpenOffice EMF Record Parsing Multiple Integer Overflow Vulnerabilities
Next by Date: Typo <= 5.1.3 Multiple Vulnerabilities
Previous by thread: iDefense Security Advisory 10.31.08: OpenOffice EMF Record Parsing Multiple Integer Overflow Vulnerabilities
Next by thread: Typo <= 5.1.3 Multiple Vulnerabilities
Index(es):
- Date
- Thread