3DVIA Composer 'dwmapi.dll' and 'ibfs32.dll' DLL Loading Arbitrary Code Execution Vulnerabilities

3DVIA Composer 'dwmapi.dll' and 'ibfs32.dll' DLL Loading Arbitrary Code Execution Vulnerabilities

References:

3DVIA Composer Homepage (Dassault Systemes)
Application DLL Load Hijacking (HD Moore)
Exploiting DLL Hijacking Flaws (hdm)
Microsoft Security Advisory 2269637 Released (Microsoft)
More information about the DLL Preloading remote attack vector (Microsoft)
New DLL Hijacking Exploits (many!) (Matt)
Microsoft Security Advisory (2269637) (Microsoft)

Privacy Statement
Copyright 2010, SecurityFocus