Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-Disclosure] new internet explorer exploit (was new worm)

from [Jelmer] Network Security [Permanent Link]
Subject: [Full-Disclosure] new internet explorer exploit (was new worm)
Date: Mon, 29 Mar 2004 16:35:41 +0200 
The code used by this worm to exploit it's users at least partly  is (i
think) new , the vulnerability it abused has afaik not been published on
eighter bugtraq or full-disclosure. possibly making it (one of?) the first
worm to totally catch people offguard.

It allows a mallicious person to take any action on an unsuspecting user who
view's a specially prepared page's pc

The known ingredient it uses is :
http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2003-08/1758.html
that has gone unpatched for over 5 months now

The remainder of the exploit manages to confuse this same adodb.stream
object enough to make it think it's being run from a local location

You can protect yourself against it by running
http://ip3e83566f.speed.planet.nl/hacked-by-chinese/fix.reg


I attached sample code myself to illustrate the problem, because
http-equiv's was messy :)
This one should be more straightforward to use

Instructions :

1. unzip
2. overwrite exploit.exe with the executable you wish to run, or leave it
untoched if you want to see some nice texturemapped rotation
3. upload the files to a webserver
4. view exploit.htm

Tested on winxp pro all patches

for the lazy ones among you can also view a demonstration here :

http://ip3e83566f.speed.planet.nl/security/newone/exploit.htm

Attachment: final.zip
Description: Binary data

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Full-Disclosure] FreeBSD Security Advisory FreeBSD-SA-04:06.ipv6, FreeBSD Security Advisories
Next by Date:  [Full-Disclosure] Fw: Multiple Vulnerabilities in Cloisterblog web blog/journal (fwd), "Tadghe Danu"
Previous by Thread:  [Full-Disclosure] FreeBSD Security Advisory FreeBSD-SA-04:06.ipv6, FreeBSD Security Advisories
Next by Thread:  [Full-Disclosure] Addressing Cisco Security Issues, Geo.
Indexes:  [Date] [Thread] [Top] [All Lists]