[<prev] [next>] [day] [month] [year] [list]
Message-ID: <002801c6fe6f$2440a880$466f6f0a@offwork>
Date: Thu, 2 Nov 2006 14:07:52 +0300
From: noreply@...ecurity.ru
To: <bugtraq@...urityfocus.com>, <full-disclosure@...ts.grok.org.uk>
Subject: Internet Explorer 7.0 mhtml stack overflow
Internet Explorer 7.0 mhtml stack overflow
Penetrate - patch - penetrate - patch - penetrate. Software life cycle or
recursion?
Impact
Low (client side dos)
Technical details
Recursion, stack overflow, exception on PUSH.
http://www.securitylab.ru/vulnerability/276342.php
Disclosure timeline
09/23/2006 Discovered
10/06/2006 Vendor informed
10/07/2006 Vendor Response
11/02/2006 Full disclosure
Credits
Positive Technoligies (www.ptsecurity.com)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists