| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 16 Oct 2008 00:18:32 +0200
From: "Thomas Pollet" <thomas.pollet@...il.com>
To: full-disclosure@...ts.grok.org.uk
Subject: visiodays
Hello,
There are huge amounts of memory corruption issues in visio.
To find them you can use any fuzzer on any vsd file.
To make things easy:
1) copy the fuzzed files to your webserver
2) attach a debugger to IE
3) use the html below.
(Also, running an activex fuzzer on the visio viewer activex is kinda
entertaining).
<html>
<body>
<div id="info">text</div>
<object classid='clsid:279D6C9A-652E-4833-BEFC-312CA8887857' id='target'
></object>
<script>
target.src="Tekening1.vsd"
var count=0;
function next(){
vsd='bug-'+count+'.vsd';
count++;
document.getElementById('info').innerHTML=vsd;
target.src=vsd;
setTimeout("next()", 500);
}
next();
</script>
</body>
</html>
Regards,
Thomas
Content of type "text/html" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists