Home page logo

bugtraq logo Bugtraq mailing list archives

Re: [Full-disclosure] COM Server-Based Binary Planting Proof Of Concept
From: Dan Kaminsky <dan () doxpara com>
Date: Thu, 2 Jun 2011 08:35:41 -0700

Does this run code without prompting, on a reasonably default configuration?

On Thu, Jun 2, 2011 at 7:52 AM, ACROS Security Lists <lists () acros si> wrote:

We published a remote/local proof of concept for the COM Server-Based Binary Planting
exploit presented at the Hack in the Box conference in Amsterdam.

Feel free to try it out online if WebDAV works through your firewall, or download it
and test it in your local network or simply on your computer.


Best regards,

Mitja Kolsek

ACROS, d.o.o.
Makedonska ulica 113
SI - 2000 Maribor, Slovenia
tel: +386 2 3000 280
fax: +386 2 3000 282
web: http://www.acrossecurity.com

ACROS Security: Finding Your Digital Vulnerabilities Before Others Do

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]