Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-108234

QT triggers dll hijacking when save as window opens

    XMLWordPrintable

Details

    • Bug
    • Resolution: Invalid
    • P1: Critical
    • None
    • 6.4.0
    • Widgets: Widgets and Dialogs
    • None
    • Windows

    Description

      QT loads some system32 DLLS when it opens the Save As dialog。However, because the QT framework preferentially uses the current directory to find DLLS, it will look up again from system32 if it cannot find them。So, we can look for the DLLS that QT needs to load and hijack them, such as: LINKINFO.DLL, DUI70.dll, DUser.dll and other DLLS。

      trace result:
      NtOpenSection( SectionHandle=0xda0ef63c8, DesiredAccess=0xd, ObjectAttributes=0x3c:"LINKINFO.dll" ) => 0xc0000034 [2 'The system cannot find the file specified.']
      NtQueryAttributesFile( ObjectAttributes="??\C:\Program Files\010 Editor\LINKINFO.dll", Attributes=0xda0ef5fa8 ) => 0xc0000034 [2 'The system cannot find the file specified.']
      Loaded DLL at 00007FF927230000 C:\Windows\SYSTEM32\LINKINFO.dll

      repetition
      Create any DLL and name it LINKINFO.dll or DUI70.dll and place it in the software directory that uses the QT framework。Start the software and open the Save As dialog box。

      This error was discovered while testing the 010 editor. Since I don't use QT, I can't give you a specific fix.

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. QTBUG-110147 DLL hijacking

          • P1: Critical - Urgent and Important, will STOP the release if matched with set FixVersion field. This includes regressions from the last version that are not edge cases; Data loss; Build issues; All but the most unlikely crashes/lockups/hanging; Serious usability issues and embarrassing bugs & Bugs critical to a deliverable. This is the highest possible priority for requirements.
          • Closed
          No reviews matched the request. Check your Options in the drop-down menu of this sections header.

          Activity

            People

              qt.team.quick.subscriptions Qt Quick and Widgets Team
              me19m4 ME19M4 ME19M4
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Gerrit Reviews

                  There are no open Gerrit changes