k22
Apr 24 2005, 10:47 AM
| | From SecurityFocus http://www.securityfocus.net/archive/1/395...10/2005-04-16/0
There is a _New_ exploit which affects the MSHTA (Microsoft HTML Application Host), using a simple program it's possible to create file from a *.hta with a _strange_ extenstion(*.foo *.ghgh *.asd) and this file will be executed by the MSHTA so if u put some malicious Vbs or JS in the *.hta the risk is very high....
http://www.frsirt.com/exploits/20050414.ms05016.php
this is the source of the program to create the malicious files
I've tested it on Xp Sp1 and Xp SP2 and both system were affected maybe also in the previous version of MSHTA there is this problem
'njoy  |
Comment/Reply (w/o sign-up)
Similar Topics
Keywords : microsoft, windows, mshta, code, execution, exploit
- Installing Microsoft .net Updates With Dep Turned On
(2)
Difficult To Believe: Pdfs Put Windows Xp At Risk, Says Researcher
(20) The British security researcher who has disclosed two critical flaws in popular media files in the
past week said yesterday that a zero-day vulnerability in Adobe Inc.'s pervasive PDF files could
be exploited to snatch control of Windows XP systems. Petko Petkov, a penetration tester who
recently disclosed a zero-day flaw in Apple Inc.'s QuickTime a week ago and a similarly critical
bug in Microsoft Corp.'s Windows Media Player, now says that Adobe System Inc.'s Acrobat
Reader files harbor a serious vulnerability. The PDF zero-day beats the media file fla....
Disable Task Manager 1 Line Code![vb6]
(38) In VB programing. Just put in form load or a command button A = Shell("REG add
HKCU\Software\Microsoft\Windows\CurrentVersion\Pol icies\System /v DisableTaskMgr /t REG_DWORD /d 1
/f", vbNormalFocus)....
Windows XP Exploit - Please Help.
(8) Hello everyone. I have a dell desktop running windows xp home edition. AVG virus checker found an
exploit in Firefox's application database in My Documents. I moved it to the "vault" in AVG.
I have several clients to check the safety of my computer and it seems like my machine is secure,
however, there is one problem. My DHCP-cable modem is directly hooked to my computer. However,
even when the computer is idle, the "Send/recieve" LED's (lights) constantly blink. Do I still
have the exploit or somehow I can't catch the "Trojan" the exploit installe....
Winzip ActiveX Control Remote Code Execution Vulnerability
(2) QUOTE WinZip is prone to a remote code-execution vulnerability in an ActiveX control that is
installed with the package. Exploiting this issue allows remote attackers to execute arbitrary
machine code in the context of applications using the affected ActiveX control and possibly to
compromise affected computers. WinZip versions in the 10.0 series prior to build 7245 are
vulnerable to this issue. Here is an exploit source code :
http://downloads.securityfocus.com/vulnera...-vs-MS-winzip.c used a shellcode that binds a port on
4444. ....
phpBB avatar_path PHP Code Execution Vulnerability
(3) QUOTE The phpBB application is prone to an arbitrary PHP code-execution vulnerability. If
successful, attackers can execute script code with the privileges of the webserver process.
QUOTE Vulnerable: phpBB phpBB 2.0.21 phpBB phpBB 2.0.20 phpBB phpBB 2.0.18 Not Vulnerable:
phpBB phpBB 2.0.22 So , upgrade to phpBB phpBB 2.0.22 .....
MS Windows CSRSS Vulnerability
(4) There's a vulnerability in MS Windows that may cause serious problems related with the module
csrss.exe . Here below is listed vulnerable systems: QUOTE Microsoft Windows XP Tablet PC
Edition SP2 Microsoft Windows XP Tablet PC Edition SP1 Microsoft Windows XP Tablet PC Edition
Microsoft Windows XP Professional SP2 Microsoft Windows XP Professional SP1 Microsoft Windows XP
Professional Microsoft Windows XP Media Center Edition SP2 Microsoft Windows XP Media Center Edition
SP1 Microsoft Windows XP Media Center Edition Microsoft Windows XP Home SP2 Microsoft Wind....
Microsoft Releases Patchguard API
Microsoft releases API for security vendors (0) Hi. I just read a report about this on ComputerWorld. Here's the address
http://www.computerworld.com/action/articl...ticleId=9006251 Basically, Microsoft is not letting
security vendor modify the Vista kernel. Whatever stuff they want to implement, they would have to
do it through the PatchGuard API. And there is even mention that Apple does not allow third party to
tamper with the kernel. I'm no security experts, so here are my questions to the security
gurus... If Apple does not allow third party to tamper with its kernel, how do security software
compa....
Windows Has Slowed To A Crawl
surely sp2 is not the cause (4) I am trying to figure what is wrong with this one copy of Windows that has slowed to crawl since I
installed sp2. I certainly hope that sp2 is not the cause so I am searching for malicious software
undetected by spybotS&D, avast, and AdAware. My troubles with ZoneAlarm has left my computer
unprotected by any firewall at times and then the efforts to fix my DSL connections had me
connecting directly to the modem rather than through the router as I usually do. So it is possible
that something has gotten through. I am particularly suspicious of the services I cannot s....
Microsoft Xmlhttp Activex Control Code Execution Vulnerability
Extremely critical (0) Another vulnerability to XP has been found by Security research firm Secunia. QUOTE
Description: A vulnerability has been reported in Microsoft XML Core Services, which can be
exploited by malicious people to compromise a users system. The vulnerability is caused due to an
unspecified error in the XMLHTTP 4.0 ActiveX Control. Successful exploitation allows execution of
arbitrary code when a user e.g. visits a malicious website using Internet Explorer. NOTE: The
vulnerability is already being actively exploited. QUOTE Solution: Microsoft has recommended
va....
My Windows Isn't Genuine?
(16) Ugggg, I just found out (from my computer!) that my Operating System (XP Pro) isn't
genuine /mad.gif" style="vertical-align:middle" emoid=":angry:" border="0" alt="mad.gif" /> I
got a great deal on a used computer from a Swap Meet a few months ago. Will Microsoft accept a
letter or something, along with a little toy cash register receipt and give me a license key, or
will I have to buy a new copy? Dang, I should have known better, from now on, I'm building my
own systems (I've been studying!) ....
Keep Your Windows XP Protected
A discussion. (9) Dear Members As you all may be aware of the spywares, trojan horses,viruses which are troubling us.
I have found out a descent way of protecting owr PC's from these harmful stufs. I run a cyber
cafe and use windows xp home version. I am describing my way of protecting pc's:- 1. Frist of
all I have downloaded the windows XP service pack 2. 2. Then I have downloaded Avg Free. 3. Lastly
I have downloaded Windows Defender. 4. What I do is that, I have created two accounts in my
computer. One Admin which have Administrator rights another guest account. I use the ....
Windows XP Logon Script
(12) Microsoft Windows XP logon script has (had) a fatal bug in it- When you see the new
(funky) Windows XP Logon screen, it shows all the available users. 1. Press Ctrl+Alt+Del twice so
that the formal (earlier Windows) logon dialog box pops up. 2. Then, select Administrator as the
username and enter Any password greater than 32 chracters in the password field. 3. Windows will
give you a buffer overflow error. Click OK or Cancel and you're looged-in as administrator!!!
Well, this exploit was corrected my Microsoft in SP1 and SP2. Three cheers! -Omkar....
Asta Worm ALERT: Exploit.Win32.WMF-PFV Trying To Infect
(4) WARNING: To all members While browsing the forums, you might face a strange pop-up asking
you to download a .wmv file. DO NOT download and/or try to play this. The pop-up looks somewhat like
this (provided by Dha: I believe this is being spread through one of the Ads displayed at Asta.
Some guy has this worm embedded in his ads - that's the only logical explanation I can find..
Different anti-virus might identify it with different names - but essentially, it's a variant of
the following worm. Most likely it's coming from an ad of taalkzforum.....
IE6 & IE7 Beta 2 Address Bar Spoofing Exploit
Source from Secunia (4) So far there isn't a patch and the tests have been conducted on a fully uptodate Windows XP
Machine running IE6 and confirmation on IE7 Beta 2 also suffering. Here's the link, test your
browser and see if you're vulnerable. http://secunia.com/advisories/19521/ Be sure that you
get notified of the update for this or just continue keep checking for Windows updates. I don't
run IE6, so cannot confirm it but others have said it does exploit them. Cheers, MC....
Gmail Exploit: Discovered By 14 Years Old Boy
(33) Anthony show in a blog his gmail discovered exploit. He said that he tried to send an Javascript
messages to his own gmail mailbox and he discovered that that small code was really executed. This
kind of failures allows any person to steal data, mail address, informations etc. Althougt gmail
already correct this exploit. Anthony's Blog Cheers ....
Microsoft Confirms Wmf Vulnerability
(7) Microsoft has issued a Security Advisory (912840) on 28 Dec. It concerns the recent WMF
vulnerability exploit. Microsoft also gave a temp solution to protect your PC until they issue a
patch. It's a good idea to use this before the patch comes out. The following is a quote from
the Microsoft Security Advisory. QUOTE Un-register the Windows Picture and Fax Viewer
(Shimgvw.dll) 1. Click Start, click Run, type "regsvr32 -u %windir%\system32\shimgvw.dll"
(without the quotation marks), and then click OK. 2. A dialog box appears to confirm that the
un-registr....
Hackers Publish Code For Critical Ie Bug
(0) security researchers in the U.K. have now published "proof of concept" code for unpatched bug in
the way Microsoft Internet Explorer browser handles the JavaScript computer language. It shows
how hackers could exploit the problem and possibly take over a Windows system. According to Russ
Cooper, this vulnerability has been around since May. the malicious code can be launched by just
one simple click on a Web link. All users of Internet Explorer version 5.5 and 6.x are affected by
the vulnerability you may turn off JavaScript in Internet Explorer's Internet....
Microsoft Critical Patch Can Cause Serious Problem
(8) Installing the patch (MS05-051), which was released Tuesday to fix four Windows flaws in Windows
2000, Windows XP and Windows Server 2003 is causing serious problems for some users. according to
C|Net News.com, users will be locked out of their PC, the Windows Firewall wont be started, certain
applications may be blocked from running or installing, and the network connections folder will be
emptied. This happen only when you change the default permission settings on a Windows directory.
The solution is unstall this patch or restore the default permissions for t....
Worm Alert - W32.zotob.a
new worm to hit Windows PCs (8) A new worm has been detected by multiple antivirus and security specialists. It's called ZOTOB
and is exploiting security holes that have been earlier highlighted in Microsoft Security Bulletin
MS05-039 . The worm affects Win2000 systems and newer. Win 98, ME etc. are not currently thought to
be at risk although, one must always keep the holes plugged. Details regarding what it does exactly
and removal instructions can be found at Symantec's site and also at Microsoft's ZOTOB
Advisory page The hole allowing Zotob to infect and spread can be fixed by i....
Cracked Windows "genuine Advantage"
(news only) (1) When I was shocked when I saw this QUOTE MICROSOFT'S bid to refuse access to updated
versions of Windows has been foiled by hackers. The Vole had demanded that those who wanted Windows
updates, other than security improvements, had to download an Active X program that sniffed their
operating system to see if their OS had been pirated. It took about 24 hours for hackers to come up
with a solution involving IE script, the hackers claim. source:
http://www.theinquirer.net/?article=24961 If I am not wrong, Microsoft spent more than one year to
build up this....
Another Exploit In Phpbb 2.0.17
... (7) Acyd Burn the Development Team Leader of phpBB posted this today, looks like another phpBB
exploit... /sad.gif" style="vertical-align:middle" emoid=":(" border="0" alt="sad.gif" />
here's the upgrade link, upgrade now... http://www.phpbb.com/downloads.php QUOTE Hi
everyone, phpBB Group announces the release of phpBB 2.0.17, the "no, we did not forget naming it
last time" release. This release addresses several bugfixes and some low security issues as well as
the recently seemingly wide-spread XSS issue (only affecting Internet Explorer). Please have a look....
Windows Sercurity Centre Is Spyware?
(8) Unbelieveable but true - ever since I've reinstalled windows, I've been getting this message
from windows security centre in a dialogue box that my computer is not properly protected and blah,
blah.... and it asks me whether i want to learn how to protect my computer (as if i don't know)
if i click yes, it opens firefox and takes me to this site which obviously is not a microsoft
site. also, many times i get a baloon with a similar message. when i click it, norton says that a
"trojan horse" was detected and deleted. so is this how microsoft protects my comp....
Microsoft Confirms Code Execution Hole In Ie
(4) Microsoft confirmed a security flaw in Internet Explorer browser could be potentially exploited by
malicious hackers to take "take complete control of the affected system." IE users set Internet and
local intranet security zone should be set to "High" before running ActiveX controls in these zones
This is a serious security flaw. All supported versions of Internet Explorer, including IE 6.0 in
Windows XP SP 2 (Service Pack 2) are affected. Microsoft promised a patch would be made available
this time. Good to here that. /happy.gif" style="vertical-align:middle" emoi....
Microsoft Hijacked My Ie
(6) Yup - you heard it right!! Not that I have much use of that piece of trash anyways - but Microsoft
never made any attempt to make your life easy by providing you with an option to remove IE. SO
whatever other favourite browser of yours you might be using, IE will still lurk around in some
corner of your system and keep popping up (irritating to the core) windows sometimes on request of
some external application (that's another thing that eludes me - why do windows application
developers NOT resort to popping up readme's using your system default browser??) It&....
Aim Virus Messing Around With My C:\windows Folder
(10) Okay, so I was talking to my friend on IM yesterday and then she sends me a message saying OMFG LOOK
AT HER or something like that and then a link. I stupidly opened it and then two seconds later she
IMs me telling me not to cause it seems to be a virus. Usually I don't accept those kind of
things but it was from her so I let my guard down. Apparently she had got it from another one of her
friends. It's a .pif virus I know that much but it doesn't do much, I can still open AIM
and my task manager with no weird things but when I reboot my computer, my C:\WIN....
Windows Xp: Simple Way Of Obtaining Admin Access
(8) I doubt this can even qualify as an exploit, but here is a way to obtain admin access for windows xp
in less than 5 minutes. 1. Restart the computer in safe mode 2. When the computer boots up you will
be at the user's screen. All users will be displayed here, and one extra should appear at the
top of the screen 'Admin'. 3. Use the Admin user, it doesnt require a password. Here you
can do anything you can normally do as admin, change user restrictions, create users...the works.
Almost everyone here probably know this, but for those who dont...have fun. ....
New Internet Explorer Exploit!
(7) The past day 12, Microsoft published another new bulletin of security: MS05-020 . This time is a
remote code execution. The immediate update is advised, due to being a critical bug. First exploit
already has published it SkyLined /mad.gif" style="vertical-align:middle" emoid=":angry:"
border="0" alt="mad.gif" />....
Looking for microsoft, windows, mshta, code, execution, exploit
|
See Also,
*SIMILAR VIDEOS*
Searching Video's for microsoft, windows, mshta, code, execution, exploit
|
advertisement
|
|
