| 软件名称: |
vsexploit.zip |
| 文件类型: |
|
|
| 界面语言: |
简体中文 |
| 软件类型: |
国产软件 |
| 运行环境: |
WinNT/2K/Xp |
| 授权方式: |
共享软件 |
| 软件大小: |
36K |
| 软件等级: |
★★★★☆ |
| 发布时间: |
2006-01-12 |
| 官方网址: |
http://www.priestmaster.org 作者:priestmaster |
| 演示网址: |
|
| 软件说明: |
|
Visual Studio Code Execution (Exploit)
Summary
Microsoft Visual Studio is "an advanced integrated development environment by Microsoft. It lets programmers create programs that run on Microsoft Windows and the World Wide Web".
Microsoft Visual Studio has been designed to execute part of the user provided code when it displays Form containing UserControls. The malicious code will be executed automatically whenever the solution file is opened in Visual Studio.
Credit:
The information has been provided by priestmaster.
Details
Vulnerable Systems:
* Visual Studio 2005
If a UserControl is added to a Form, Visual Studio will launch the code inside UserControl_Load function automatically whenever the user decides to view the main form where the UserControl is located. The execution occurs with no warning, and doesn't require the viewer to compile or execute the project.
Exploit:
http://www.priestmaster.org/projects/exploits/vsexploit.zip
Proof of concept:
Open vbexploit.sln file
Click on Form1.cs
If a user click on the solution file (vbexploit.sln) and the form1.cs is shown, VS launch the code inside UserControl1_Load function. Place your backdoor into this function (You can use the whole WIN-API and .NET framework to code your back door). The default behavior for the example file is show a Message Box and launch calc.exe.
|
|
| 下载地址: |
进入下载地址列表
|
| 下载说明: |
☉推荐使用网际快车下载本站软件,使用 WinRAR v3.10 以上版本解压本站软件。
☉如果这个软件总是不能下载的请点击报告错误,谢谢合作!!
☉下载本站资源,如果服务器暂不能下载请过一段时间重试!
☉如果遇到什么问题,请到本站论坛去咨寻,我们将在那里提供更多 、更好的资源!
☉本站提供的一些商业软件是供学习研究之用,如用于商业用途,请购买正版。 |
|
[ 推荐]
[ 评论(0条)] [返回顶部] [打印本页]
[关闭窗口] |
|
|
| |
|
|
 |
|
推荐广告 |
|
|
|
|
|
