BugTraq
applicable exploit for winxp-sp2-uptodate Internet Explorer Jan 11 2005 04:33PM
Liu Die Yu (liudieyu umbrella name) (1 replies)


patch will come in hours(at least i believe so).

many people(paul of greyhats and mike, sandblad of secunia and shreddersub7) already provided proof-of-concept remote-code-execution exploit for winxp-sp2-uptodate Internet Explorer.

the problem is: their code is simply not applicable in real attack. so i made this:

http://0daymon.org/monitor/injecthh-op-2/dir/injecthh_op_2-code_by_liudi
eyu

http://0daymon.org/monitor/injecthh-op-2/dir.zip

[ reply ]
IE HHCTRL exploit still usable even after patch Jan 18 2005 04:53PM
Valentin Avram (vavram gecadnet ro)


 

Privacy Statement
Copyright 2010, SecurityFocus