Re: [Full-Disclosure] MSIE <IFRAME> and <FRAME> tag NAME property bufferoverflow PoC exploit (was: python does mangleme (with IE bugs!))

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "Berend-Jan Wever" <skylined@xxxxxxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxx>, <bugtraq@xxxxxxxxxxxxxxxxx>
Subject: Re: [Full-Disclosure] MSIE <IFRAME> and <FRAME> tag NAME property bufferoverflow PoC exploit (was: python does mangleme (with IE bugs!))
From: "morning_wood" <se_cur_ity@xxxxxxxxxxx>
Date: Tue, 2 Nov 2004 05:44:16 -0800
References: <Pine.LNX.4.44.0410232125460.18307-100000@felinemenace.org> <001001c4ba35$ab8d6560$0000fea9@grotedoos> <004601c4c074$bcbe1650$0100a8c0@grotedoos>

bindshell success ( html run from local )
connect from remote success...
this is NASTY
if shellcode modified this will do reverse or exe drop i assume....

good work,

Donnie Werner

References:
- python does mangleme (with IE bugs!)
  - From: ned
- Re: [Full-Disclosure] python does mangleme (with IE bugs!)
  - From: Berend-Jan Wever

Prev by Date: MSIE <IFRAME> and <FRAME> tag NAME property bufferoverflow PoC exploit (was: python does mangleme (with IE bugs!)) (fwd)
Next by Date: Rv: [Full-Disclosure] MSIE <IFRAME> and <FRAME> tag NAME property bufferoverflow PoC exploit (was: python does mangleme (with IE bugs!))
Previous by thread: Re: [Full-Disclosure] python does mangleme (with IE bugs!)
Next by thread: [BUGZILLA] Vulnerabilities in Bugzilla 2.16.6 and 2.18rc2
Index(es):
- Date
- Thread

[Index of Archives] [Linux Security] [Netfilter] [PHP] [Yosemite News] [Linux Kernel]

Powered by Linux