Crazy XP Sploit
Page 1 of 4 123 ... LastLast
Results 1 to 10 of 34

Thread: Crazy XP Sploit

  1. #1
    Senior Member
    Join Date
    Dec 2001
    Posts
    304

    Crazy XP Sploit

    This is scarry as ****. If you are using Windows XP check this out. Go to your C:\ drive and place a text file in C:\ called test.txt [make sure lowercase]. Close out of everything and then click on this link It is going to bring up help and support. Once it comes up wait a couple of seconds and then close or minimise it and then go back to your C:\ drive... test.txt is now gone.

    This is the scarry part this is what was used to delete test.txt
    hcp://system/DFS/uplddrvinfo.htm?file://c:\test.txt if you do this though
    Im not going to post the whole thing because if this turns it to a link and someone clicks on it they will loose everything in C:\Windows but if you change the c:\test.txt to c:\windows\* Bye Bye everything in C:\windows. Point is you might want to right click and click properties just to see where the link you are clicking on goes to if you are using WinXp.

    Crazy as **** isnt it.

    Thanks to bugtraq for this
    Violence breeds violence
    we need a world court
    not a republican with his hands covered in oil and military hardware lecturing us on world security!

  2. #2
    Junior Member
    Join Date
    Aug 2002
    Posts
    28

    Thanks

    Thanks for the warning...I use XP and i am glad that i know about this.

  3. #3
    Member
    Join Date
    Apr 2002
    Posts
    97
    That's the craziest thing I've ever seen. Congratulations to windows for making the biggest piles of **** computers have ever been able to use. Oh, and excellent find Euclid.
    The radiance of ignorace in a world of nothingness and all of this time your pestilence has created nothing but uselessness

  4. #4
    Senior Member
    Join Date
    Dec 2001
    Posts
    304
    yea i screwed it up at first. The link is now working or you can just copy and paste the written out url and paste it in IE or Run
    Violence breeds violence
    we need a world court
    not a republican with his hands covered in oil and military hardware lecturing us on world security!

  5. #5
    Senior Member
    Join Date
    Nov 2001
    Posts
    4,786
    holy ****, i thought con\con was a pain in the butte! this makes a BSoD look innocent. Thanks for the heads up on that one.
    Bukhari:V3B48N826 “The Prophet said, ‘Isn’t the witness of a woman equal to half of that of a man?’ The women said, ‘Yes.’ He said, ‘This is because of the deficiency of a woman’s mind.’”

  6. #6
    Senior Member
    Join Date
    Dec 2001
    Posts
    304
    no problem. Just checked my antis and thanks for balincing me out when I posted about that base64 decoded text that i was wondering what it was.

    Damit i just thought about it. I just opened the door for all the kiddies on this site with webpages.

    do you think i should delete this post? Well they all probably are subscribed to bugtraq anyways I dont know. Whatever
    Violence breeds violence
    we need a world court
    not a republican with his hands covered in oil and military hardware lecturing us on world security!

  7. #7
    Senior Member
    Join Date
    Nov 2001
    Posts
    4,786
    no prob there was nothing wrong with what you posted and i got a lot out of reasearcing the code, thanks again.

    if its on bugtraq those who would use it have it all ready and the people here need to be made aware of it....you did good
    Bukhari:V3B48N826 “The Prophet said, ‘Isn’t the witness of a woman equal to half of that of a man?’ The women said, ‘Yes.’ He said, ‘This is because of the deficiency of a woman’s mind.’”

  8. #8
    Kwiep
    Join Date
    Aug 2001
    Posts
    924
    This is really the last thing I wanted to see today... Darn...
    *Kwiep takes the dos boot floppy he found under his bed.
    format c: d: e: f:
    *Kwiep pops in the redhat install cd's
    Just when I was thinking MS made something what at least didn't have any adress/link errors.
    Thanks for saying this Euclid..
    This kind off bugs I really hate. Now you have to check on every untrusty site if the link isn't something malicious even without all the cross site scripting madness and cookie stealing ****.

    Well let's wait till MS made some patch again then.
    Double Dutch

  9. #9
    Senior Member
    Join Date
    Dec 2001
    Posts
    304
    yea the shitty part is that they arent going to patch it untill SP1. If you read the whole post it is a very good read and has some suggestions how to stop.

    This is what does it : The file (32,463 bytes);
    %windir%\PCHEALTH\HELPCTR\System\DFS\uplddrvinfo.htm contains the fraction of script

    var oFSO = new ActiveXObject ( "Scripting.FileSystemObject" );
    try
    {
    oFSO.DeleteFile( sFile );
    }

    Anyways check the whole article here : http://online.securityfocus.com/arch...3/2002-08-19/0
    Violence breeds violence
    we need a world court
    not a republican with his hands covered in oil and military hardware lecturing us on world security!

  10. #10
    Thanks for the heads up man. All my friends use XP and some network computers do as well. Thanks!

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •