In order for the recent IE exploits that have been posted here to actually work, you MUST do a couple of things. . .
First, visit http://translate.google.com/translate?u=ht...ie=UTF8&oe=UTF8 page and see what it has to say about the still exploitable IE vulns.
After reading this, you should realize that you cannot use this exploit unless you have your own server setup on your computer. I recommend you go and download apache a see how it works. Then get used to configuration. . . .
When you do that, it should be clear to you from the link above what you must do. Try searching google on the topic of configuration of content-type: application/hta on apache. It's not that difficult, and I'm not going to spoon feed it to you any more than I already have, which is probably too much. I'm hoping that people only use this for "educational" purposes, which is what it will be for if you set up the server on your own computer and don't register it with DNS.
I also think that we owe illwill more than most people think because, if it were not for him, we would not have even been exposed to this exploit for research and discussion; and only research and discussion. He has posted before that his exploits are not for the general masses to use, and therefore we should respect him and not use this in the wild.
