BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Re: MS Internet Explorer 6.0 (mshtml.dll) Denial of Service Exploit Dec 05 2006 03:25PM
3APA3A (3APA3A SECURITY NNOV RU)
Dear ajannhwt (at) hotmail (dot) com [email concealed],

First, array index overflow is usually very dangerous and is exploitable
to code execution in many cases.

Second, this one is not new. It was reported by Michal Zalewski in March
and is patched in current Internet Explorer versions:

http://www.security.nnov.ru/Ldocument...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus