. I have check and test the proof of concept generated by dllhijacking. The products are:
- CyberLink PowerDirector v7
- CyberLink Power2Go DVD v6.0
The issue is trigger with the iso,pdl,pds,p2g and p2i file formats, and DLL request by the applications is the mfc71loc.dll or mfc(nationality)71
From the CyberLink web site (http://www.cyberlink.com/stat/volume-license/enu/index.jsp):
"CyberLink, a maker of the world-acclaimed DVD player software PowerDVD, also designs multimedia solutions for well-known brands such as DELL, HP, ACER, Medion, Packard Bell, and Dixons, to name a few. PowerDVD can help organizations achieve their business goals with powerful, yet easy-to-use video solutions, and now comes with a Volume License Program to better serve corporate, academic, government, and non-profit customers. Millions of licenses have already been granted to major organizations every year—all of them recognizable household names" .
The following screen shot shown the exploits generated by dllhikacking script: