Home page logo
/

bugtraq logo Bugtraq mailing list archives

Active X exploit.
From: shipley () DIS ORG (Peter Shipley)
Date: Mon, 25 Aug 1997 15:14:22 -0700


There is a new expliot  for active X


    http://www.network-security.com/activex/

    http://www.dis.org/maglite/



This is a very interesting hole since this is the first time that
someone actually published the source code for examination.  The
code was stolen by maglite from a recent 2600 meeting from the
author, a dude named Toby . But the attack is very interesting in
the sense that allows you to turn off the security restrictins of
Internut Explainer 3.2 using activeX just by connecting to a WWW
page.

Check it out.  It is bundled with the getadmin stuph published by
the Russian named Sokolov (?)


                -Pete



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]