How to make the New IE exploit

So you got the new IE exploit from milw0rm
http://milw0rm.com/exploits/7403  XP SP3 IE7
http://milw0rm.com/exploits/7410  Vista SP0,SP1 IE7
http://milw0rm.com/exploits/7477  IE7 XP SP2, SP3, Vista




But what fun is running calc.exe on everyone?

You need to change the line: var shellcode = unescape("%uc92b%ue983%etc%etc%etc%etc%etc%etc%etc%etc%etc")
to your own custom payload. So lets begin...

1. Go to http://metasploit.com:55555/PAYLOADS and make a custom Win32 payload

2. Go get ActivePerl from http://www.activestate.com/store/activeperl/download and install it.

3. Next get the perl script from here http://kpan1c.blogspot.com/2006/03/jsunescapepl_30.html
   copy paste the code into notepad and save as JSUnescape.pl
   Then change the "my $shellcode=" to the metasploit code you made in step 1

4. From a command prompt in the type   JSUnescape.pl >encode.txt
   (make sure the JSUnescape.pl is in your current cmd prompt directory, duh.)

5.Change the unescape in the original exploit html to the code inside encode.txt