Full Disclosure mailing list archives
Rediff Bol 7.0 WAB Contacts
From: "Gregory R. Panakkal" <viper31337 () yahoo co in>
Date: Sun, 4 Sep 2005 08:57:39 +0100 (BST)
Rediff Bol 7.0 WAB Contacts ~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Affected Program : Rediff Bol 7.0 It is a popular instant messenger from Rediff.com Related URL : http://messenger.rediff.com/newbol/ Discovered by : Gregory R. Panakkal Vulnerability Description : Rediff Bol's ActiveX control (Fetch.FetchContact.1 / Fetch.dll) allows a webpage to read the user's Windows Address Book (WAB) contacts. The method "FullAddressBook" returns the WAB contact list in XML format Proof Of Concept: [script] var Obj = new ActiveXObject("Fetch.FetchContact.1"); alert(Obj.FullAddressBook(0,"","","")); [/script] Online Demo: http://www.infogreg.com/security/im/rediff-bol-7-exposes-wab.html rgds, Gregory R. Panakkal http://www.infogreg.com/ __________________________________________________________ Yahoo! India Matrimony: Find your partner online. Go to http://yahoo.shaadi.com _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Rediff Bol 7.0 WAB Contacts Gregory R. Panakkal (Sep 04)