bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/windows/remote/21808.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

9 lines
No EOL
495 B
Text
Raw Permalink Blame History

source: https://www.securityfocus.com/bid/5751/info
Java Database Connectivity (JDBC) classes are used by the Virtual Machine to provide connectivity to various data sources.
It is possible to spoof a JDBC class request to make it appear as though it came from an authorized applet. This could allow execution of any DLL on the system by a remote attacker.
new com.ms.jdbc.odbc.JdbcOdbc("C:\\mydll\000");
This results in the malicious applet loading the attacker-supplied DLL 'C:\mydll.dll'.
Reference in a new issue View git blame Copy permalink