tag:blogger.com,1999:blog-8539880144347728238.post8428743728097122134..comments2024-01-24T04:15:08.086-05:00Comments on Carnal0wnage Blog: Owning the Client without an ExploitUnknownnoreply@blogger.comBlogger5125tag:blogger.com,1999:blog-8539880144347728238.post-68509104634372569552009-04-22T22:28:00.000-04:002009-04-22T22:28:00.000-04:00i know its patched with SP3 but its working for me...i know its patched with SP3 but its working for me with SP2.<br /><br />i'll ask dean to take a look at the postCGhttps://www.blogger.com/profile/11061967917509053185noreply@blogger.comtag:blogger.com,1999:blog-8539880144347728238.post-78524540883486938542009-04-22T21:36:00.000-04:002009-04-22T21:36:00.000-04:00In IE6 and IE7 default XP SP2 installs I did not g...In IE6 and IE7 default XP SP2 installs I did not get this to work.<br /><br />I modified the EXE to a file hosted online.<br /><br />If I save the file locally, and open the HTML page then I get an active X prompt, however, after accepting the warning nothing happens.<br /><br />What am I doing wrong?<br /><br />Thanks<br /><br />Anon SteveAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-8539880144347728238.post-23626591521433813822008-08-28T21:28:00.000-04:002008-08-28T21:28:00.000-04:00Nice Post. Keep up the good work.Nice Post. Keep up the good work.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8539880144347728238.post-6287576670545436382008-08-28T15:32:00.000-04:002008-08-28T15:32:00.000-04:00Good catch jay,Yea, I tend to leave a little somet...Good catch jay,<BR/><BR/>Yea, I tend to leave a little something out. I don't want to make it too easy for them. Same reason I left out actually obfuscating it.<BR/><BR/>Cheers,<BR/>Deandean de beerhttps://www.blogger.com/profile/13744345182407258839noreply@blogger.comtag:blogger.com,1999:blog-8539880144347728238.post-43193837930818602012008-08-28T14:38:00.000-04:002008-08-28T14:38:00.000-04:00Don't know if you purposefully meant to leave out ...Don't know if you purposefully meant to leave out a few closing braces (old school bugtraq anti-kiddie technique) ...Anonymousnoreply@blogger.com