标签 ‘Activex’ 下的日志
Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
来源:milw0rm
<!--
01/06/2007 23.19.50
Microsoft Windows DirectSpeechSynthesis Module (XVoice.dll)
/ DirectSpeechRecognition Module (Xlisten.dll)
remote buffer overflow exploit / 2k sp4 seh version
both the dlls are located in %SystemRoot%\speech folder
and they are vulnerable to the same issue.
while on 2k it depends on activex settings, under xp they are both
阅读全文 »
Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
来源:milw0rm
6.30 10/06/2007
Microsoft Windows DirectSpeechSynthesis Module (XVoice.dll 4.0.4.2512)
/ DirectSpeechRecognition Module (Xlisten.dll 4.0.4.2512)
remote buffer overflow exploit/ xp sp2 version
both dlls are vulnerable, this is the poc for the first one
worked regardless of boot.ini settings, remotely and
by dragging the html file in the browser window
阅读全文 »
Tencent QQ QQzone WebCtrl Activex空指针引用漏洞(0day)
by axis(axis_at_ph4nt0m.org)
http://www.ph4nt0m.org
Date: 2007-02-13
摘要:
QQ是由Tencent公司开发的一个IM软件,在中国有着非常广泛的用户。幻影旅团的axis发现了一个QQZone的activex漏洞。在使用WebCtrl
方法时,将引用一个空指针,造成ie崩溃。由于该activex没有标记为safe,故会出现安全提示。
影响版本:
Tencent QQ2006/2007及之前所有版本。
by axis(axis_at_ph4nt0m.org)
http://www.ph4nt0m.org
Date: 2007-02-13
摘要:
QQ是由Tencent公司开发的一个IM软件,在中国有着非常广泛 阅读全文 »
Tags: Activex, QQ, QQ空间Sina UC 2006 Activex SendDownLoadFile Exploit
Sina UC 2006 Activex SendDownLoadFile Exp
Author: axis@ph4nt0m
Date: 2007-01-09
Usage: Sina_UC_2006_Activex_SendDownLoadFile_exp.exe <URL> [Local htmlfile]
Sina_UC_2006_Activex_SendDownLoadFile_exp.exe
下载地址:2007011002126.rar
