Changeset 1538

Timestamp:

01/25/08 16:08:48 (7 months ago)

Author:

jose

Message:

[phoneyc]
support for Move Networks Upgrade Manager Control Buffer Overflow Exploit
exploit code, vuln module

Files:

• phoneyc/trunk/ActiveX.py (modified) (3 diffs)
• phoneyc/trunk/modules/jscript/Move.js (added)
• phoneyc/trunk/tests/4979.html (added)

phoneyc/trunk/ActiveX.py

@@ -56 +56 @@
-        self.clsid['C36112BF-2FA3-4694-8603-3B510EA3B465'] = FileUploader()
-        self.clsid['DC07C721-79E0-4BD4-A89F-C90871946A31'] = GomWeb()
+        self.clsid['6054D082-355D-4B47-B77C-36A778899F48'] = Move()
-
-        self.clsname = {}
@@ -77 +78 @@
-        self.clsname['FileUploader.FUploadCtl.1'] = FileUploader()
-        self.clsname['GomWebCtrl.GomManager.1'] = GomWeb()
+        self.clsname['QMPUpgrade.Upgrade.1'] = Move()
-
-        # set up the pure JScript version
@@ -380 +382 @@
-        self.description = 'Gretech GOM Player GomWeb3.DLL'
-
+class Move(ActiveX):
+    def __init__(self):
+        self.js_src = self.load_js_src('Move.js')
+        self.classname = 'Move'
+        self.cve_id = ('CVE-NOMATCH', )
+        self.description = 'Move Networks Upgrade Manager 1.x'
+