great exploit.. works fine in my workstation
i have WinXp Sp2 IE 6.0.2900.2180.xpsp_sp2_gdr.050301-1519
you have a exploit usable for this?
Best Regards
Manuel Moreno
AsesoriaPC
Stgo,Chile
2006/3/16, Michal Zalewski [EMAIL PROTECTED]:
Good morning,
This might not come as a surprise, but
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
here we say:
et puis 100 balles et 1 mars ? hu ;
Manuel Moreno Leiva wrote:
great exploit.. works fine in my workstation
i have WinXp Sp2 IE 6.0.2900.2180.xpsp_sp2_gdr.050301-1519
you have a exploit usable for this?
Best Regards
Manuel
On Thu, 16 Mar 2006, Michal Zalewski wrote:
This might not come as a surprise, but there appears to be a *very*
interesting and apparently very much exploitable overflow in Microsoft
Internet Explorer (mshtml.dll).
I'd like to make a self-serving statement in response to dozens of people
who
BTW, tested the POC on MSIE (File Version = 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158))
with mshtml.dll (6.00.2900.2802 (xpsp_sp2_gdr.051123-1230)) and it didn't worked.
On 3/16/06, Michal Zalewski [EMAIL PROTECTED] wrote:
Good morning,This might not come as a surprise, but there appears to be a
Michal Zalewski wrote:
iexplore http://lcamtuf.coredump.cx/iedie.html
In this way it works on IE7 Beta as well
--
Tomasz Onyszko
http://www.w2k.pl/blog/ - (PL)
http://blogs.dirteam.com/blogs/tomek/ - (EN)
___
Full-Disclosure - We believe in it.
Tested on Win2k3 Standard, fully patched...
Mshtml.dll 6.0.3790.2577
Iexplore.exe 6.0.3790.1830
PoC does work.
David Schenz
[EMAIL PROTECTED]
-Original Message-
From: Michal Zalewski [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 16, 2006 4:14 PM
To: Daniel Bonekeeper
Cc:
This does not repro on IE7 though
-Hariharan
- Original Message -
From: Michal Zalewski [EMAIL PROTECTED]
To: Daniel Bonekeeper [EMAIL PROTECTED]
Cc: bugtraq@securityfocus.com; [EMAIL PROTECTED];
full-disclosure@lists.grok.org.uk
Sent: Friday, March 17, 2006 2:43 AM
Subject: Re:
of course you have!!!
i also know how to convert a cow into bacon !!!
On 3/17/06, Michal Zalewski [EMAIL PROTECTED] wrote:
On Thu, 16 Mar 2006, Michal Zalewski wrote: This might not come as a surprise, but there appears to be a *very*
interesting and apparently very much exploitable overflow
On Sat, 18 Mar 2006 02:31:37 +0100, poo said:
i also know how to convert a cow into bacon !!!
Obligatory full disclosure:
Cows go MOOO. Pigs go OINK. Bacon comes from the one that goes OINK.
Unless you have a really clever DNA sequencer hack to do the conversion,
in which case full
On 3/16/06, Michal Zalewski [EMAIL PROTECTED] wrote:
For non-believers, there's a short but fiery demonstration page available
at http://lcamtuf.coredump.cx/iedie.html (yes, it will probably crash your
browser).
Confirmed with 6.0.2900.2180.xpsp_sp2-gdr.050301-1519 on XPSP2
K.
MATCHING_FILE
On Thu, 16 Mar 2006, Daniel Bonekeeper wrote:
BTW, tested the POC on MSIE (File Version = 6.00.2900.2180
(xpsp_sp2_rtm.040803-2158)) with mshtml.dll (6.00.2900.2802
(xpsp_sp2_gdr.051123-1230)) and it didn't worked.
Daniel followed up with me in private and confirmed that the PoC *did*
work
On Fri, 17 Mar 2006, Hariharan wrote:
This does not repro on IE7 though
It generally does, according to tests by a couple of folks.
/mz
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and
12 matches
Mail list logo