-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 http://www.milw0rm.com/exploits/2179 Run the above as a server and connect to it using the in-built IRC client. The Linux, Windows and OSX versions are vulnerable and others may also be. By embedding a redirect to irc://evilhost in a web page the browser can be easily crashed. This requires the user to enter a nickname if the IRC client hasn't been previously configured. Enjoy, NNP - -- http://silenthack.co.uk -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFE37C23h7ZfzDylwMRAlDjAJ9NiSge62AUMI2Idb/CKytR72nCEgCeJIPB YnL6yy1JpiGYFp2GiTEr0x4= =J/Gt -----END PGP SIGNATURE-----
