Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1997_3

Bugtraq archives for 3rd quarter (Jul-Sep) 1997: Re: Active X exploit.

Re: Active X exploit.

Andreas Bogk (andreasARTCOM.DE)
Wed, 27 Aug 1997 00:40:40 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Randal Schwartz: "Re: Vulnerability in Majordomo"
Previous message: Oliver Xymoron: "Re: Vulnerability in Majordomo"
In reply to: Peter Shipley: "Active X exploit."
Next in thread: Paul Leach: "Re: Active X exploit."

>>>>> "Peter" == Peter Shipley <shipleyDIS.ORG> writes:

    Peter> There is a new expliot for active X
    Peter>     http://www.network-security.com/activex/

This exploit is not new, a similiar program has been around on

http://www.thur.de/home/steffen/activex/index_e.html

since march. And the principle is the same on all ActiveX
exploits. There simply is no security, ActiveX controls are simple
DLLs.

Andreas

--
Never underestimate the value of fprintf() for debugging purposes.

Next message: Randal Schwartz: "Re: Vulnerability in Majordomo"
Previous message: Oliver Xymoron: "Re: Vulnerability in Majordomo"
In reply to: Peter Shipley: "Active X exploit."
Next in thread: Paul Leach: "Re: Active X exploit."