/home/mb3e/

♺ Google is the best teacher ♺ | University of Gunadarma IT ☺

Attachmate Reflection Standard Suite 2008 activex buffer overflow

Exploit Code : 
 # Exploit Title: Attachmate Reflection Standard Suite 2008 activex buffer
overflow
# Date: Mar 11, 2010 found
# Author: Rad L. Sneak (JB)
# Software Link: http://www.attachmate.com/Evals/ruo2/eval-form.htm
# Version: 13.0 & 14.0
# Tested on: WinXP SP3 & Win7 64bit
# CVE : None yet


Attachmate Reflection Standard Suite 2008 & Reflection X Both contain a
buffer overflow that could be triggered via activex. when r2axctrl.ocx is
sent large string to the Reflection for UNIX & OpenVMS control class a
crash happens that overwrites EIP with 41414141.


# Code : [PoC exploit below]
___________________________________________________________________________
___

PoC1


/>

___________________________________________________________________________
________
May need to throw a refresh to trigger PoC2 completely
___________________________________________________________________________
_______

PoC2


/>

___________________________________________________________________________
________________


Preference : http://securityreason.com/exploitalert/8268
  • Attachmate Reflection Standard Suite 2008 activex buffer overflow
  • Unknown
  • May 20, 2010
  • No comments:
 

0 comments:

Post a Comment

silahkan tinggalkan komentar anda disini .. :D

Subscribe to: Post Comments (Atom)