AOH :: HP Unsorted X :: BU-1513.HTM

Xunlei XPPlayer ActiveX Remote Exec 0day POC



Xunlei XPPlayer ActiveX Remote Exec 0day POC
Xunlei XPPlayer ActiveX Remote Exec 0day POC



# Date: 2010.01.17
# Author: superli
# Software Link: http://down.sandai.net/Thunder5.9.14.1246.exe 
# Version: <= 5.9.14.1246
# Tested on: xpsp3 ie6
# Greeting to Xunlei Security Center guys,your guys still not yet release patch or new version to fix the vunl which also can #attack Xunlei KanKan Player(http://dl.xunlei.com/xmp.html).I exposed this vunl two weeks ago,are you really responsible for the security of millions users? 
# POC Code :







The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.