Metasploit mailing list archives
Maple
From: scriptjunkie <scriptjunkie1 () googlemail com>
Date: Wed, 28 Apr 2010 17:08:08 -0400
Maple auth bypass exploit. Standard security settings prevent code from running in a normal maple worksheet without user interaction, but those setting do not apply when double-clicking a .maplet file. This exploits that vulnerability for windows, linux, or just executes a generic command. (I'm sure someone will call it a feature. Either way, it still enables arbitrary code execution.) scriptjunkie
Attachment:
maple_maplet.rb
Description:
_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework