[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-Disclosure] IE Object Type Validation Vulnerability Exploit
- To: "phlox" <phlox@xxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxx>
- Subject: Re: [Full-Disclosure] IE Object Type Validation Vulnerability Exploit
- From: "n30" <n30_lists@xxxxxxxxxxx>
- Date: Mon, 15 Sep 2003 15:37:03 -0700
MessageThanks a lot guys for your reply...The things work like a charm..
I am now trying to understand the content of .php so that i can execute nc.exe
instead of mal_ware.exe. Also is it possible to execute nc.exe from
http://somewhere instaed of from local system?
Any help/link/pointers greatly apprciated
Thanks
-N
----- Original Message -----
From: phlox
To: full-disclosure@xxxxxxxxxxxxxxxx
Sent: Monday, September 15, 2003 1:43 PM
Subject: Re: [Full-Disclosure] IE Object Type Validation Vulnerability Exploit
page.php > page.hta
look at page.hta attachment?
-phlox
----- Original Message -----
From: n30
To: full-disclosure@xxxxxxxxxxxxxxxx
Sent: Monday, September 15, 2003 12:46 PM
Subject: [Full-Disclosure] IE Object Type Validation Vulnerability Exploit
Guys,
Any body knows of any exploit for the Object type vuln
Eeye has a POC
http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0084.html
But I need something more firm for demonstartion.
Any links/pointers apprciated
Thanks in advance
-N