MySpace Uploader Buffer Overflow Exploit.

By secgeeks - Posted on February 5th, 2008

Tagged:

ocx

159

vote

This time it's the MySpace uploader tool that is vulnerable to a serious buffer overflow. I found a neatly written javascript file that exploits MySpaceUploader.ocx at the classid: 48DD0448-9209-4F81-9F6D-D83562940134. Those plugins or applets pose serious issues as you can see. The exploit below tries to reach calc.exe and launches it on success.

Bookmark/Search this post with:

Trackback URL for this post:

http://secgeeks.com/trackback/1428

Similar entries

Recent blog posts

Newly Popular

Drupalit monthly

Drupalit weekly

Drupalit daily

Drupalit hottest

Drupalit latest

Recent comments

Problem solved!!!!
30 weeks 5 days ago
New version here
33 weeks 2 days ago
thanks for sharing.
1 year 2 weeks ago
links
1 year 2 weeks ago
Link to preplay
1 year 2 weeks ago
so now you are on linkedin
1 year 18 weeks ago
Outlook Email search tool
1 year 34 weeks ago
nice tool..
2 years 25 weeks ago
Preplay for windows
2 years 26 weeks ago
yeah,foxit is god
2 years 28 weeks ago

Get SecGeeks Feeds in your email:

Navigation

Who's online

There are currently 1 user and 4 guests online.

Online users

secgeeks

BlogRoll

Hack In The Box

http://maltainfosec.org
http://sipvicious.org/blog/
astalavista.com
Fake antivirus removal instructions

Partners

www.techmantras.com
Play Free Bingo at WikiBingo.co.uk
Find the latest Scratch Cards Games
Play bingo with no commitment-bingo winner.
Rent Sell Property
Post your Classified Ads for free
add your link here..