README.md

CVE-2024-6473 PoC

Yandex Browser for Desktop before 24.7.1.380 has a DLL Hijacking Vulnerability because an untrusted search path is used.

Vulnerable browser version

Important

The Internet must be turned off during installation, otherwise the browser will be updated.

You can download vulerable version from download.cdn.yandex.net

Or usage from archive

1. Download and unpack Yandex_Browser_24.4.5.498.zip
2. Start Setup.exe

PoC

I used the "LolNope" approach from here: https://github.com/advancedmonitoring/ProxyDll

You just need to compile the DLL file and place it in the path %LOCALAPPDATA%\Yandex\YandexBrowser\Application and start the browser

References

• https://github.com/advisories/GHSA-p7m8-prjf-m93h
• https://nvd.nist.gov/vuln/detail/CVE-2024-6473
• https://bdu.fstec.ru/vul/2024-06704
• https://xakep.ru/2024/09/05/ya-browser-malware/