Jump to content

Injecting a DLL into Modern UI (aka Metro/Windows-App) App


Nergal

Recommended Posts

  • Moderators

Looks like Microsoft did learn (at least a little) the lesson from Sidebar Gadgets

http://blog.nektra.com/main/2013/02/25/injecting-a-dll-in-modernui-metro-app-win8

 

When you try to inject a library into a Windows 8 Modern UI Metro application you will find that although the injection code works as expected, your DLL will NOT load, LoadLibrary will return FALSE and GetLastError will return ERROR_ACCESS_DENIED.

 

As Far as I can tell they failed to achieve what they were attempting maybe some more technical person may be able to read more into this (like Alan or Keetah)

 

ADVICE FOR USING CCleaner'S REGISTRY INTEGRITY SECTION

DON'T JUST CLEAN EVERYTHING THAT'S CHECKED OFF.

Do your Registry Cleaning in small bits (at the very least Check-mark by Check-mark)

ALWAYS BACKUP THE ENTRY, YOU NEVER KNOW WHAT YOU'LL BREAK IF YOU DON'T.

CCLEANER, RECUVA, DEFRAGGLER AND SPECCY DOCUMENTATION CAN BE FOUND AT  https://support.piriform.com/hc/en-us and  https://www.ccleaner.com/docs

Pro users file a PRIORITY SUPPORT request at https://support.piriform.com/hc/en-us/requests/new

link to WINAPP2.INI explanation

Link to comment
Share on other sites

Sidebar gadgets weren't vulnerable to DLL injections. They had cross site scripting issues that are a whole different beast.

 

The only thing Microsoft have achieved here is isolating processes in the modern UI, so that additional code can't be loaded into them and forced to run. A program attempting to do so will not crash, but rather be sent a passive aggressive "you can't do that!" message.

 

Of course, only an executable can inject code into another program. For this situation to occur the system is likely already compromised.

I'm Shane.

Link to comment
Share on other sites

  • Moderators

thanks, good explanation.

 

ADVICE FOR USING CCleaner'S REGISTRY INTEGRITY SECTION

DON'T JUST CLEAN EVERYTHING THAT'S CHECKED OFF.

Do your Registry Cleaning in small bits (at the very least Check-mark by Check-mark)

ALWAYS BACKUP THE ENTRY, YOU NEVER KNOW WHAT YOU'LL BREAK IF YOU DON'T.

CCLEANER, RECUVA, DEFRAGGLER AND SPECCY DOCUMENTATION CAN BE FOUND AT  https://support.piriform.com/hc/en-us and  https://www.ccleaner.com/docs

Pro users file a PRIORITY SUPPORT request at https://support.piriform.com/hc/en-us/requests/new

link to WINAPP2.INI explanation

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.