Security Issue DLL Hijacking Vulnerability Note

HD Moore of Metasploit published a blog about Exploiting DLL Hijacking Flaws on Sunday, August 22, 2010, and then almost everyone who use Windows are at risk, because you can easily spot one familiar application in the long list of applications that prone for this vulnerabilitie, and IntegraXor is also affected for DLL Hijacking vulnerability.

DLL Hijacking vulnerability within IntegraXor was found since end of last year, this is thus far the longest vulnerability that we put on hold to patch. The biggest reason is we need to put our existing customers’ requests in priority, and this vulnerability is an attack which may have some lead way on the time line. As such we put this vulnerability in a lower priority to mitigate as compare to other security vulnerabilities that found later.

Summary of Event
  • 22-Dec-2010: An anonymous security researcher that addressed himself/herself as “Mister Teatime” has published an “Uncoordinated Disclosure” of a DLL Hijacking vulnerability at The Open Source Vulnerability Database.
  • 28-Dec-2010: ICS-CERT published a security alert.
  • 12-Jan-2011: ICS-CERT contacted IntegraXor Support Team for confirmation.
  • 17-May-2011: Build 4081 with patch was sent to ICS-CERT for verification.
  • 25-May-2011: ICS-CERT confirmed DLL hijacking has been patched.
  • 30-May-2011: IntegraXor support team issued VN and declared all version after build 4081 are patched for DLL Hijacking attack.

Note: The screenshot/drawing is published under Creative Commons Attribution 3.0 US License.