Hack tricks with QQ skin to do a backdoor invasion-vulnerability warning-the black bar safety net

2006-11-28T00:00:00
ID MYHACK58:62200613043
Type myhack58
Reporter 佚名
Modified 2006-11-28T00:00:00

Description

A few days ago lcx prompted to say and QQ overflow vulnerability, and then suddenly the reminders I used to have a few QQ. vbs file didn't seriously go read it. So into the directory looking for it, this look does not matter Ah, almost weighs that. The original We for QQ of operation is like this.

Then there is handsome, and directly insert scripts into it, the permissions will inherit down want to do whatever, hehe.

QQ skin script:

|

Dim UserNum Dim Path Dim ShowStatus Dim foldbottom Dim bMsgInside Dim CurrentWidth Dim CurrentHeight

'Comment

Sub Window_OnInit() Window. GetScriptVersion "1.0" Path = "NewSkins\QQ2005 Lite\" ShowStatus = 1 UserNum = "0" If 1 = ShowStatus Then UserNum = UserNum End If NewPanels. visible = false bMsginside = 0 End Sub

Sub Window_OnSize(cx,cy) Window. LockPaint() CurrentWidth = cx CurrentHeight = cy

BackgroundT. width = cx - 7 8 BackgroundRT. left = cx - 1 4

BackgroundLB. top = cy - 1 1 0 BackgroundB. top = cy - 1 1 0 BackgroundB. width = cx - 2 4 BackgroundRB. left = cx - 1 2 BackgroundRB. top = cy - 1 1 0

BackgroundL. height = cy - 1 9 5 BackgroundC. width = cx - 1 9 BackgroundC. height = cy - 1 9 5 BackgroundR. left = cx - 8 BackgroundR. height = cy - 1 9 5

foldbottom = 6 5 ntopdistance = 0 If bMsgInside = 1 Then ntopdistance = 2 0 End If NewPanels. top = 6 8 + ntopdistance Bar1. top = 7 0 + ntopdistance Bar1. width = cx - 1 0 Bar1. height = cy - 9 7

CloseButton. left = cx - 2 1 ColorButton. left = cx - 3 8 MinButton. left = cx - 5 5

MenuButton. top = cy - 2 3 PaymentButton. top = cy - 2 3 QQHomeButton. top = cy - 2 3 MsgManagerButton. top = cy - 2 3

QQNumber. width = cx - 4 5

Window. UnLockPaint() End Sub

'The above three buttons Sub MinButton_onClick() Window. ExeCommand 1,2 End Sub

Sub CloseButton_onClick() Window. ExeCommand 1,3 End Sub

Sub ColorButton_onClick() Window. ExeCommand 4,7 End Sub

Sub QQPushMsg_onClick() QQPushMsg. Visible = false bMsgInside = 0 window. RebuildRGN Window. ExeCommand 10,0 End Sub

'Six Bar button Sub Window_onClick(code, Name) Window. LockPaint() Window. DisableBar CStr(Name) Window. ExeCommand code,CStr(Name) Window. UnLockPaint() End Sub

'At the top of the button group Sub StatusButton_onClick() s = CStr(StatusButton. Left + StatusButton. width - 1 0)&"."& CStr(StatusButton. Top + StatusButton. height - 8) Window. ExeCommand 6,s End Sub

sub StatusPic_onMouseMove(nX,nY) s = CStr(StatusPic. Left) & "." & CStr(StatusPic. Top) & "." & CStr(StatusPic. width) & "." & CStr(StatusPic. height) Window. ExeCommand 2 0,s end Sub

sub StatusPic_onMouseLeave() s = CStr(StatusPic. Left) & "." & CStr(StatusPic. Top) & "." & CStr(StatusPic. width) & "." & CStr(StatusPic. height) Window. ExeCommand 2 1,s end Sub

Sub StatusPic_onClick() Window. ExeCommand 60,2 End Sub

Sub ContentsButton_onClick() Window. ExeCommand 4,9 End Sub

Sub MobileMsgButton_onClick() Window. ExeCommand 4,2 End Sub

Sub ChatRoomButton_onClick() Window. ExeCommand 4,1 End Sub

Sub SearchButton_onClick() Window. ExeCommand 4,3 End Sub

'Below the button group Sub MenuButton_onClick() s = CStr(MenuButton. Left)&"."& CStr(MenuButton. Top) Window. ExeCommand 5,s End Sub

sub PaymentButton_onClick() Window. ExeCommand 4,8 end Sub

Sub QQHomeButton_onClick() Window. ExeCommand 16,1 End Sub

Sub MsgManagerButton_onClick() Window. ExeCommand 4,6 End Sub

'Process QQ program sent to the event Sub Window_OnNotify(code ,var) If code = 1 Then 'Set the current Uin UserNum = var If 0 = ShowStatus Then QQNumber. value = UserNum Else QQNumber. value = UserNum End If ElseIf code = 2 Then 'Flash the system message button var 1 is the beginning of flash. 2 is stopped If(var = 1) Then MsgManagerButton. StopFlash MsgManagerButton. Flash 3 0 Else MsgManagerButton. StopFlash End If ElseIf code = 3 then 'The flash state of the button var to 0,1,2,3 is corresponding to the ico. 4 shows stop if var = 0 then StatusPic. ico = "Online. ico"elseif var = 1 Then StatusPic. ico = "leave. ico" elseif var = 2 Then StatusPic. ico = "invisible. ico" elseif var = 3 Then StatusPic. ico = "Offline. ico" elseif var = 4 then StatusPic. Ico = StatusIco end if ElseIf code = 4 Then 'Set the Bar in the front Window_onClick 2,Var ElseIf code = 5 Then 'Set the current state. if var = 1 0 Then StatusIco = "StatusPic. ico" elseif var = 2 0 Then StatusIco = "StatusPic1. ico" elseif var = 3 0 Then StatusIco = "StatusPic2. ico" elseif var = 4 0 Then StatusIco = "StatusPic3. ico" end If StatusPic. ico = StatusIco If 0 = ShowStatus Then QQNumber. value = UserNum Else QQNumber. value = UserNum End If ElseIf code = 6 Then 'Set the Skin of the start path Path = Var ElseIf code = 1 0 then if(var = 1) then PaymentButton. SetLighting(true) else PaymentButton. SetLighting(false) end If ElseIf code = 2 5 Then 'Skin push if(var = 1) then ColorButton. SetLighting(true) else ColorButton. SetLighting(false) end If ElseIf code = 2 0 0 then QQPushMsg. value = Var QQPushMsg. Visible = true bMsgInside = 1 window. RebuildRGN End If End Sub