Dll injection questions

[Kosta]

Hello All,

I have a few questions regarding DLL injection to a server.

1) Is there any DLL injection vulnerability scanner ?

2) Is it possible to inject dll to server via web application bugs?

[newbi3]

Are you talking about sql injection?

[Foxtrot]

Are you talking about sql injection?

^^.

Allthough, I guess he could really mean DLL injection because this is used for using game mods on PCs etc, like you open a program that injects code into dlls to give you superjump etc xD

[MB60893]

Hello All,

I have a few questions regarding DLL injection to a server.

1) Is there any DLL injection vulnerability scanner ?

2) Is it possible to inject dll to server via web application bugs?

I am not sure about this. I recommend injecting a file through a java applet or something along those lines.

Good Luck!

[no42]

Here are some links for you to review:

DLL hijacking/planting

• DLLHijackAuditKit
• https://community.rapid7.com/community/metasploit/blog/2010/08/22/exploiting-dll-hijacking-flaws

DLL Injection

• http://blog.didierstevens.com/category/bpmtk/
• http://www.securestate.com/Documents/syringe.c

Edited January 28, 2014 by midnitesnake

[Kosta]

I am speaking about DLL hijacking/planting or DLL Injection, without having access to the machine.

Can it be done?