CVE-2006-5650

This Metasploit module exploits CVE-2006-5650 by leveraging the ICQPhone.SipxPhoneManager ActiveX control to download and execute arbitrary files via the DownloadAgent function. It serves a malicious HTML page that triggers the vulnerability and delivers a payload executable.

This Metasploit module exploits a remote code execution vulnerability in the America Online ICQ ActiveX Control (CVE-2006-5650) by leveraging the DownloadAgent function to download and execute arbitrary files on a victim's system.

This Metasploit module exploits CVE-2006-5650 by leveraging the ICQPhone.SipxPhoneManager ActiveX control's DownloadAgent function to download and execute arbitrary files on a victim's system. It sets up an HTTP server to deliver a malicious EXE payload when the victim visits the crafted HTML page.