Several Windows applications vulnerable due to Insecure Library Loading
During the latest days several security resources on the Internet have published information about a vulnerability in Windows applications, which when exploited, might allow remote execution of program code in certain circumstances. Note that this may affect third-party Windows applications, as well as (potentially) applications developed by Microsoft.
Microsoft has issued Security Advisory (2269637), which describes the vulnerability, its implications, mitigating factors and recommended actions.
According to Microsoft the vulnerability exists in programs (potentially from Microsoft and third party vendors), which do not load external libraries in a secure manner.
Apple's iTunes 9 is confirmed to have been vulnerable to this issue, and Apple has recently published an updated version. See this web article from Apple for more information.
See the following web resources for more information:
- ACROS Security report (about the iTunes issue)
- Rapid7's blog posting "Application DLL Load Hijacking" (describing the general vulnerability)
- Metasploit's "Exploiting DLL Hijacking Flaws" (about identifying and exploiting applications vulnerable to the DLL hijack vulnerability)
- SANS Internet Storm Center's Diary posting "DLL hijacking vulnerabilities"
Norman advices users to be aware of security updates from software vendors regarding this vulnerability.