[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] (no subject)

To: <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: [Full-Disclosure] (no subject)
From: "Michael Evanchik" <mevanchik@xxxxxxxxxxxxxxxxx>
Date: Mon, 27 Dec 2004 18:01:12 -0500

Had a mistake in my code o well.  Works now

PoC: http://www.michaelevanchik.com/security/microsoft/ie/xss/index.html

http://www.michaelevanchik.com/security/microsoft/ie/xss/writehta.txt <--
avp's should add this



Here is some new adodb code AVP's should add.  No longer needed to connect
to external source.  Malicious recordset can be built locally.


www.michaelevanchik.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: [Full-Disclosure] Cheers Quick action by symantec on IE auto compromise
Next by Date: [Full-Disclosure] Windows (XP SP2) Remote code execution with parameters
Previous by thread: [Full-Disclosure] (no subject)
Next by thread: [Full-Disclosure] [USN-37-1] cyrus21-imapd vulnerability
Index(es):
- Date
- Thread