DLL Hijacking via URL files
In Summary : This means that I have to find an extension, which not only allows me to execute a malicious payload but additionally is not ...
https://updatesinfosec.blogspot.com/2018/05/dll-hijacking-via-url-files.html
In Summary :
This means that I have to find an extension, which not only allows me to execute a malicious payload but additionally is not covered by this protection scheme as I want to avoid the necessity of a user click. As this feature has been around for quite a long time I decided to move on.
I have to mention that I discovered that certain 3rd party extensions like Pythons .py files bypass this protection but this requires that Python is installed and the python executable is present in the environment variable. [...]
kindly refer the following link as follow up :
https://ift.tt/2GsWcRa
This means that I have to find an extension, which not only allows me to execute a malicious payload but additionally is not covered by this protection scheme as I want to avoid the necessity of a user click. As this feature has been around for quite a long time I decided to move on.
I have to mention that I discovered that certain 3rd party extensions like Pythons .py files bypass this protection but this requires that Python is installed and the python executable is present in the environment variable. [...]
kindly refer the following link as follow up :
https://ift.tt/2GsWcRa
