You can test if this exploit will work on your machine by heading to:
http://sec.gravito.com/

Then just click on "HTA" and if your CDROM drive pops open, you can be exploited. There is a link on the page to the .zip file.

Due to the unique way that "mshta.exe" works, you can actually use this script as an upload/executer for your favorite files or trojans. Got a command prompt? This script can help big time.

Edit: whoops.. forgot to attach the file.

I am sorry
But your script just download a file but don,t execute it
When I test it in my own cgi-bin it didn,t write q.vbs in c drive but in your own web it do it!!!!
Why ?

It doesn't work if u have a firewall because the firewall blocks Internet access to the HTA object .... even Norton pops-up and does not allow the execution of the script

YA
I test it in winxp and it worked
but in win2000 server ie v5 it didn,t work

How can i get this to work?

need a little help

Works Windows 2003 and Windows Longhorn 4038!
thx dude

http://forums.governmentsecurity.org/index...=30&#entry12601

If you're having trouble getting it to work, check that above URL.

If the test script at http://sec.gravito.com/hta does not work, that doesn't mean it doesn't work on other people's machines. Your XP or whatever might be set to autodownload&execute WinXP fixes, and this was one that came out pretty damn fast.