-----------------------------------------------------------------------
 RavWare Software MAS Flic Control "FileName()" method Buffer Overflow
 url: https://www.ravware.com/

 author: shinnai
 mail: shinnai[at]autistici[dot]org
 site: http://shinnai.altervista.org

 File name: masflc.ocx
 Version:   1.0.0.1

 Remote execution depends on Internet Explorer settings

 This was written for educational purpose. Use it at your own risk.
 Author will be not responsible for any damage.

 Tested on Windows XP Professional SP2 all patched, with Internet
 Explorer 7

 This exploits executes calc.exe

 Heap Spray Technique was developed by SkyLined
 (http://www.edup.tudelft.nl/~bjwever/advisory_iframe.html.php)
-----------------------------------------------------------------------