lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <20100128213652.7258.qmail@securityfocus.com>
Date: 28 Jan 2010 21:36:52 -0000
From: k4mr4n_st@...oo.com
To: bugtraq@...urityfocus.com
Subject: Re: Microsoft IE 6&7 Crash Exploit

This is an uninitialized object members of the error, the specific location for the C * Element (here for CLiElement) at offset 0x10, this pointer to a structure, the structure of the offset 0 is a point to itself (?) The object pointer , offset for the 4 point to the parent DOM element.When you call document.createElement ( "html"), the code does not initialize the members, resulting in a null pointer reference error.
As the DOM element is the _MemAllocClear through mshtml to allocate memory function, the function of memory allocation will be cleared, can not take advantage of this mistake

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ