kw3rln Posted August 18, 2007 Report Share Posted August 18, 2007 Vulnerabilitatea poate fi exploatatã atunci când victima acceptã o invitaþie pentru o conversaþie cu ajutorul camerei web. Testat pe Yahoo Messenger 8.1.0.4131. downloadezi http://www.team509.com/expyahoo.rar2. compilezi dll-ul3. alegi "invite to view my webcam" la un contact care ii online4. cand a dat accept injectezi dll-ul in procesul de yahoo messenger5. messengerul celuilalt sa "buseste" Quote Link to comment Share on other sites More sharing options...
Ras Posted August 18, 2007 Report Share Posted August 18, 2007 am intrat pe link-ul ala si imi arata multe caractere sau ce or fii alea M?!TwQ?OkjN??;?p"?3?-^qp?-???%@?K?X?Wcl?PN?6H,x????'D?s?ak??vdh6]??2/ ??}t?ky??$???e?>%??`=??V??ic?Xq^??0z~>S?&P?+?e^?L?uv 8hS?[?VaELF?m??<?l?NPiti2X=y!????k??'v?o".???E?+?? Quote Link to comment Share on other sites More sharing options...
oXyGeN Posted August 19, 2007 Report Share Posted August 19, 2007 am intrat pe link-ul ala si imi arata multe caractere sau ce or fii alea M?!TwQ?OkjN??;?p"?3?-^qp?-???%@?K?X?Wcl?PN?6H,x????'D?s?ak??vdh6]??2/ ??}t?ky??$???e?>%??`=??V??ic?Xq^??0z~>S?&P?+?e^?L?uv 8hS?[?VaELF?m??<?l?NPiti2X=y!????k??'v?o".???E?+??ia-l cu un download manager... Quote Link to comment Share on other sites More sharing options...
kw3rln Posted August 19, 2007 Author Report Share Posted August 19, 2007 doamne ras Quote Link to comment Share on other sites More sharing options...
vladiii Posted August 19, 2007 Report Share Posted August 19, 2007 Mi se pare ca este ceva si mai interesant, un buffer overflow in ywcvwr.dll care permite si executia de cod remote. Si BOFul asta provine tot de la webcam ! :roll: Quote Link to comment Share on other sites More sharing options...
Ras Posted August 19, 2007 Report Share Posted August 19, 2007 am intrat pe link-ul ala si imi arata multe caractere sau ce or fii alea M?!TwQ?OkjN??;?p"?3?-^qp?-???%@?K?X?Wcl?PN?6H,x????'D?s?ak??vdh6]??2/ ??}t?ky??$???e?>%??`=??V??ic?Xq^??0z~>S?&P?+?e^?L?uv 8hS?[?VaELF?m??<?l?NPiti2X=y!????k??'v?o".???E?+??ia-l cu un download manager...damn nu mi-a trecut prin cap ;D Quote Link to comment Share on other sites More sharing options...
Guest Nemessis Posted August 19, 2007 Report Share Posted August 19, 2007 Sau click dreapta pe link si save as... Quote Link to comment Share on other sites More sharing options...