--==  ms05037漏洞利用  ==--
使用方法
Microsoft Windows XP [版本 5.1.2600]
(C) 版权所有 1985-2001 Microsoft Corp.

C:\>ms05037.exe > page.htm

微软MS于2005.6.30发布了一个安全报告——Microsoft Security Advisory (903144)，报告称微软ie浏览器中存在堆溢出漏洞，远程攻击者可能利用这个漏洞覆盖函数指针或数据段，导致在IE环境中执行任意代码。起因是恶意的网页初始化javaprxy.dll COM对象的方式。如果用户加载了有某些嵌入CLSID的HTML文档的话，就可能导致空指针错误或内存破坏。
      受影响的ie版本：
Internet Explorer 5.01 Service Pack 3 on Microsoft Windows 2000 Service Pack 3
Internet Explorer 5.01 Service Pack 4 on Microsoft Windows 2000 Service Pack 4
Internet Explorer 6 Service Pack 1 on Microsoft Windows 2000 Service Pack 3
Internet Explorer 6 Service Pack 1 on Microsoft Windows 2000 Service Pack 4
Internet Explorer 6 Service Pack 1 on Microsoft Windows XP Service Pack 1
Internet Explorer 6 for Microsoft Windows XP Service Pack 2
Internet Explorer 6 Service Pack 1 for Microsoft Windows XP 64-Bit SP1 (Itanium)
Internet Explorer 6 for Microsoft Windows Server 2003
Internet Explorer 6 for Microsoft Windows Server 2003 Service Pack 1
Internet Explorer 6 for Microsoft Windows Server 2003 for Itanium-based Systems
Internet Explorer 6 for Microsoft Windows Server 2003 with SP1 for Itanium
Internet Explorer 6 for Microsoft Windows XP 64-Bit Edition Version 2003 (Itanium)
Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition
Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
Internet Explorer 5.5 Service Pack 2 on Microsoft Windows Millennium Edition
Internet Explorer 6 Service Pack 1 on Microsoft Windows 98
Internet Explorer 6 Service Pack 1 on Microsoft Windows 98 SE
Internet Explorer 6 Service Pack 1 on Microsoft Windows Millennium Edition

      截至现在，微软还没发布关于这个漏洞的补丁。
~~~~~~~~~~~~~~~~~~~~~~~~~~