BugTraq
Internet explorer Vulnerbility May 31 2006 08:12PM
Mr Niega gmail com (3 replies)
RE: Internet explorer Vulnerbility Jun 01 2006 08:37PM
Peter Kruse (kruse krusesecurity dk)
Re: Internet explorer Vulnerbility Jun 01 2006 09:45AM
Alexander Sotirov (asotirov determina com)
Confirmed on a fully patched Windows XP.

It's a stack overflow in inetconn.dll, but it's most likely not exploitable
because the DLL is compiled with /GS. There are no other interesting variables
to overwrite between the buffer and the return address. Overwriting the
arguments doesn't get us anywhere either.

It would be exploitable on older systems not compiled with /GS, but the code
where the vulnerability is was added in XP SP2.

Alex

[ reply ]
Re: Internet explorer Vulnerbility Jun 01 2006 07:01AM
Hariharan (harij22 gmail com)


 

Privacy Statement
Copyright 2010, SecurityFocus