Xunlei XPPlayer 5.9.14.1246 - ActiveX Remote Execution (PoC)

EDB-ID:

11176

CVE:


Author:

superli

Type:

dos

Platform:

Windows

Published:

2010-01-17

# Author: superli
# Version: <= 5.9.14.1246
# Tested on: xpsp3 ie6
# Greeting to Xunlei Security Center guys,your guys still not yet # release patch or new version to fix the vunl which also can #attack Xunlei KanKan Player(http://dl.xunlei.com/xmp.html).
# I exposed this vunl two weeks ago,are you really responsible for # the security of millions users?
# Code :

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/11176.zip (Xunlei_XPPlayer_ActiveX_Remote_Exec_0day_POC.zip)