.asx bufferoverrun...

[Joakim Sandström <jode () TRIBALSTORM COM>]

I tried out the example supplied with the vuln- description.. but without
success..
I had a run at it at managed to get it working.. The exploit seems to work
only with win2k sp1 and the .asx file needs to be initialized from the
explorer
by clicking ONLY ONCE on the file so that the media player starts to read
the file in a small window inside the explorer.. I inserted a commmand
prompt
opener inside the .asx .. you need to kill explorer after trying out the
.asx file..


Peace,
        JODE

ps. .asx file attached..

Attachment: expl.asx
Description: