kw3rln Posted August 18, 2007 Report Posted August 18, 2007 Vulnerabilitatea poate fi exploatatã atunci când victima acceptã o invitaþie pentru o conversaþie cu ajutorul camerei web. Testat pe Yahoo Messenger 8.1.0.4131. downloadezi http://www.team509.com/expyahoo.rar2. compilezi dll-ul3. alegi "invite to view my webcam" la un contact care ii online4. cand a dat accept injectezi dll-ul in procesul de yahoo messenger5. messengerul celuilalt sa "buseste" Quote
Ras Posted August 18, 2007 Report Posted August 18, 2007 am intrat pe link-ul ala si imi arata multe caractere sau ce or fii alea M?!TwQ?OkjN??;?p"?3?-^qp?-???%@?K?X?Wcl?PN?6H,x????'D?s?ak??vdh6]??2/ ??}t?ky??$???e?>%??`=??V??ic?Xq^??0z~>S?&P?+?e^?L?uv 8hS?[?VaELF?m??<?l?NPiti2X=y!????k??'v?o".???E?+?? Quote
oXyGeN Posted August 19, 2007 Report Posted August 19, 2007 am intrat pe link-ul ala si imi arata multe caractere sau ce or fii alea M?!TwQ?OkjN??;?p"?3?-^qp?-???%@?K?X?Wcl?PN?6H,x????'D?s?ak??vdh6]??2/ ??}t?ky??$???e?>%??`=??V??ic?Xq^??0z~>S?&P?+?e^?L?uv 8hS?[?VaELF?m??<?l?NPiti2X=y!????k??'v?o".???E?+??ia-l cu un download manager... Quote
vladiii Posted August 19, 2007 Report Posted August 19, 2007 Mi se pare ca este ceva si mai interesant, un buffer overflow in ywcvwr.dll care permite si executia de cod remote. Si BOFul asta provine tot de la webcam ! :roll: Quote
Ras Posted August 19, 2007 Report Posted August 19, 2007 am intrat pe link-ul ala si imi arata multe caractere sau ce or fii alea M?!TwQ?OkjN??;?p"?3?-^qp?-???%@?K?X?Wcl?PN?6H,x????'D?s?ak??vdh6]??2/ ??}t?ky??$???e?>%??`=??V??ic?Xq^??0z~>S?&P?+?e^?L?uv 8hS?[?VaELF?m??<?l?NPiti2X=y!????k??'v?o".???E?+??ia-l cu un download manager...damn nu mi-a trecut prin cap ;D Quote
Guest Nemessis Posted August 19, 2007 Report Posted August 19, 2007 Sau click dreapta pe link si save as... Quote
