|
Hi,
Somehow the POC does not work on both of my WinXPSP2 pro
boxes.
Both
are fully patched, but one is hardened and the other is after a clean
install.
After
running the POC, the IE opens the Help window, but then freezes for a couple of
minutes.
After
IE stops freezing, there is no Microsoft Office.hta on the startup
folder.
And
yes, I'm running this on an Administrator account.
Can
anyone else confirm this?
--
Aviv Raff
From "Zen and the Art of Why Linux Sucks": "Ahh.. Can you smell the 'open source' zealots in the morning?". From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Michael Evanchik Sent: Friday, December 24, 2004 6:11 PM To: full-disclosure@lists.netsys.com; bugtraq@securityfocus.com; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: [Full-Disclosure] YEY AGAIN Automatic remote compromise of InternetExplorer Service Pack 2 XP SP2 http://freehost07.websamba.com/greyhats/sp2rc-analysis.htm Microsoft
Internet Explorer XP SP2 Fully Automated Remote
Compromise Dec, 21
2004 Vulnerable Not
Tested Severity
Proof of
Concept? - If an
error is shown, press OK. This is normal. - Notice in
your startup menu a new file called Microsoft Office.hta. When run, this file
will download and launch a harmless executable (which includes a pretty neat
fire animation) Michael
Evanchik Relationship1 p:
914-921-4400 f:
914-921-6007 web: http://www.relationship1.com
|
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
