MySpace Uploader Buffer Overflow Exploit.

Publicated on : 1201888234
This time it's the MySpace uploader tool that is vulnerable to a serious buffer overflow. I found a neatly written javascript file that exploits MySpaceUploader.ocx at the classid: 48DD0448-9209-4F81-9F6D-D83562940134. Those plugins or applets pose serious issues as you can see. The exploit below tries to reach calc.exe and launches it on success.