AxMan recommends
attaching WinDbg to Internet Explorer (iexplore.exe) before the fuzzing process
beings.
a. Download WinDbg from www.microsoft.com/whdc/devtools/debugging/
installx86.mspx.
Figure 8-10 AxMan demonstration interface
Chapter 8: ActiveX Security 219
b. After it is installed, two methods can be used with WinDbg. Here??™s the
?¬? rst method:. Choose Start | Programs |> Debugging Tools for Windows |
Windbg. Then close all other IE browsers except for the one on which
AxMan is loaded. Choose File | Attached to a Process. Choose File | Open.
Select iexplore.exe (ensure this is the IE process where AxMan is loaded).
Press F5. Now that the debugger is attached to IE, switch back to on AxMan
on Internet Explorer.
c. The second method is to load WinDbg from the Start menu: Choose Start |
Run and type cmd.exe. Change directories to WinDbg ???C:\Program Files\
Debugging Tools for Windows???. Type windbg ??“I on the command line.
3. If you want to enumerate all the CLSIDs on the local system to fuzz, simply
click the Start button. AxMan will then start enumerating all the CLSIDs on the
local system. Note that this process may take a very long time.
4. If you have already enumerated the CLSIDs from axenum, do not click the Start
button; instead, copy the CLSID from the safe.
Pages:
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387