Dailydave: Re: Strcpy (RPC exploits, IE exploits and more)

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Dailydave mailing list archives

Re: Strcpy (RPC exploits, IE exploits and more)

From: Alexander Sotirov <asotirov () determina com>
Date: Thu, 10 Aug 2006 18:20:54 -0700

Danett song wrote:

4) I had seen that H D Moore and other researchers
have found many vulnerabilitys in Internet Explorer.
How do you list all active X that a machine have and
cab be instanceated by a html code? Also, how do you
list all the functions and prototypes of a given
Active X component (that is a DLL) ?


To find the CLSIDs of all COM objects on the system, look at the
HKEY_CLASSES_ROOT\CLSID registry key.

To list all functions and prototypes of an ActiveX component, download AxMan
from http://metasploit.com/users/hdm/tools/axman/ and read the source code.

Alex
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

By Date By Thread

Current thread:

Re: Strcpy, (continued)
- Re: Strcpy Danett song (Aug 10)
  - Re: Strcpy Dave Korn (Aug 10)
  - Re: Strcpy H D Moore (Aug 10)
    - Re: Strcpy H D Moore (Aug 10)
    - Re: Strcpy (RPC exploits, IE exploits and more) Danett song (Aug 10)
    - Re: Strcpy (RPC exploits, IE exploits and more) Alexander Sotirov (Aug 10)
    - Re: Strcpy (RPC exploits, IE exploits and more) Danett song (Aug 15)