| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <3f42e9420601100419r7e0c254bt@mail.gmail.com> Date: Tue Jan 10 12:20:07 2006 From: drewmasters at gmail.com (Drew Masters) Subject: PoC for the 2 new WMF vulnerabilities (DoS) Not sure if it's been previously mentioned... It's possible to cause similiar crashes by making a malformed call to startdoc instead of setabortproc with 64bytes of garbage data. Cheers Drew On 09/01/06, Andrey Bayora <andrey@...urityelf.org> wrote: > > Hello list, > > In case, someone interested: > > Here is the PoC for the 2 new WMF vulnerabilities discovered by cocoruder > (http://ruder.cdut.net) and does not covered by MS06-001. > > You can download WMF images at: > http://www.securityelf.org/files/WMF-DoS.rar > > Regards, > Andrey. > > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060110/c7b18db8/attachment.html
Powered by blists - more mailing lists