More Fun with ActiveX
Today brings us yet another ActiveX COM vulnerability, this bug is deemed "extremely criticial" by Secunia.com and pretty much everyone else.
The bug hunter was kind enough to submit a POC along with his disclosure.
Here is the link to the POC
I have tested the code against IE 6 SP2 installed on a fully patched XP SP2 and it is vulnerable. Symantec catches the shell code in the POC and labels the dumped content as a "Trojan Horse". This of course can be easily bypassed with a proper payload.
I hope MS is well on their way to a Critical Patch push, else we could all be in for some fun.
Today brings us yet another ActiveX COM vulnerability, this bug is deemed "extremely criticial" by Secunia.com and pretty much everyone else.
The bug hunter was kind enough to submit a POC along with his disclosure.
Here is the link to the POC
I have tested the code against IE 6 SP2 installed on a fully patched XP SP2 and it is vulnerable. Symantec catches the shell code in the POC and labels the dumped content as a "Trojan Horse". This of course can be easily bypassed with a proper payload.
I hope MS is well on their way to a Critical Patch push, else we could all be in for some fun.
posted by William Bell at 2:45 PM
0 Comments:
Post a Comment
<< Home