Microsoft Machine Debug Manager (mdm) DLL side loading vulnerability
The Machine Debug Manager, mdm.exe, is a program that provides support for program debugging.
During the testing, it was found that MDM is affected with DLL hijacking vulnerability. The following conditions are required to exploit MDM DLL hijacking vulnerability:
1. MDM (mdm.exe) is installed
2. Disable script debugging (Other) option is not selected (IE -> Internet Options -> Advanced)
Exploitation could be performed via multiple Windows applications. A few scenarios are documented here.
Read on for details.