Xunlei XPPlayer <= 5.9.14.1246 ActiveX Remote Exec 0day POC

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Xunlei XPPlayer <= 5.9.14.1246 ActiveX Remote Exec 0day POC
# Published : 2010-01-17
# Author : superli
# Previous Title : MediaMonkey Player Local Denial of Service (DoS)
# Next Title : OtsTurntables Free v1.00.047 SEH Overwrite POC

# Author: superli
# Version: <= 5.9.14.1246
# Tested on: xpsp3 ie6
# Greeting to Xunlei Security Center guys,your guys still not yet # release patch or new version to fix the vunl which also can #attack Xunlei KanKan Player(http://dl.xunlei.com/xmp.html).
# I exposed this vunl two weeks ago,are you really responsible for # the security of millions users?
# Code :

http://www.exploit-db.com/sploits/Xunlei_XPPlayer_ActiveX_Remote_Exec_0day_POC.zip