> -----Original Message-----
> From: Arman Nayyeri [mailto:arman-n (at) Phreaker (dot) net [email concealed]]
> Sent: Sunday, April 11, 2004 2:08 AM
> To: bugtraq (at) securityfocus (dot) com [email concealed]
> Subject: Microsoft Internet Explorer BMP file memory DoS vulnerability
>
>
>
> Microsoft Internet Explorer BMP file memory DoS vulnerability
> =============================================================
> Title: Microsoft Internet Explorer BMP file memory DoS
> vulnerability
> Vuln Name: 58 bytes BMP vs 51,539,607,528 GB memory
> Date: Sunday, April 11, 2004
> Software: Internet Explorer v5.0-v6.0
> (i guess perior versions are vulnerable)

I just executed this on Windows XP SP1 with IE 6.0 SP1 (all latest patches)
on a system with 1GB of memory. I watched my PF usage jump to 1.3GB,
physical memory fall to as low as 1MB, meanwhile IEXPLORE.EXE only consumed
23MB of memory, and paged most of that out.

I noticed that my free physical memory bounced around the 8MB to 1MB mark
until the page finished loading, then slowly began to increase to around
28MB after about a minute. It might have gotten higher than that, but I got
bored watching ;)

But, no system crash (darnit.)

--
Alan W. Rateliff, II

[ reply ]