|
Microsoft Internet Explorer BackToFramedJPU Cross-Domain Policy Vulnerability
Liu Die Yu has released a proof of concept exploit designed to exploit the issues described in BID 9105, 9107 and 9109 to execute arbitrary executables. The proof of concept 1stCleanRc-Xp.zip and a document describing the exploit is available at the following location: http://www.safecenter.net/UMBRELLAWEBV4/1stCleanRc/index.html The exploit 1stCleanRc-Xp.zip is linked below. A proof-of-concept has been made available at the following location: http://www.safecenter.net/UMBRELLAWEBV4/BackToFramedJpu/BackToFramedJpu-MyPage.htm The following proof-of-concept also demonstrates how this vulnerability may be exploited in combination with other issues: http://www.safecenter.net/UMBRELLAWEBV4/1stCleanRc/1stCleanRc-Demo/index.html |
|
 Privacy Statement |
