[Full-Disclosure] (no subject)
Michael Evanchik
mevanchik at relationship1.com
Mon Dec 27 23:01:12 GMT 2004
Had a mistake in my code o well. Works now
PoC: http://www.michaelevanchik.com/security/microsoft/ie/xss/index.html
http://www.michaelevanchik.com/security/microsoft/ie/xss/writehta.txt <--
avp's should add this
Here is some new adodb code AVP's should add. No longer needed to connect
to external source. Malicious recordset can be built locally.
www.michaelevanchik.com
Full-Disclosure is hosted and sponsored by Secunia.