lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <C7D30A809E0156439E7B2A452A415BDA01C93386@msxadv1.host.magwien.gv.at>
From: pel at adv.magwien.gv.at (Pellmann Paul)
Subject: AW: New Microsoft Internet Explorer mshtml.dll 
	Denial of Service?

This seems to be caused by the 1x1 image http://www.galad.com/frame/e1x1.gif used within the page. If I block this URL the IE stops crashing with that page.

cu
Paul 


> > Its a mail client issue; doesn't happen if you click on
> > a link from Internet Explorer.
> 
> No, I am very sure that this happens also, if you follow the 
> link inside
> a web page only (without an involving mail client).
> 
> So go to http://www.counterpane.com/crypto-gram.html , scroll down and
> click the link that says "Holger Hasselbach has translated several
> issues of Crypto-Gram into German [...]". The error occurs as 
> described
> in my original posting.
> 
> > Your mail headers don't exactly give away your own mail client. 
> > What would it be?
> 
> Microsoft Outlook 2002 SP2 on Windows XP Professional
> 
> Yours,
> 
> Marc Ruef
> 
> -----BEGIN PGP SIGNATURE-----
> Version: PGP 8.0
> 
> iQA/AwUBP1Rw4Be5hzJzqVMhEQKFkACeOBaQowm8I6p0P2Fb12C4E2ndwgoAniRK
> qtApctQA9L1W78qDsE4Puuvz
> =m0et
> -----END PGP SIGNATURE-----
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
> 


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ