SecurityHome.eu Security vulnerability: msienull-dos.txt

Home / vulnerabilities PDF

msienull-dos.txt
Posted on 07 January 2009
Source : packetstormsecurity.org Link

MSIE can be made to crash with a NULL ptr Read AV by executing a very small piece of JavaScript. This affects MSIE 6.0, 7.0 and 8.0 beta2. It should be fixed in 8.0 rc1.

The following HTML triggers the issue:

<BODY onload=screen[""]>

I am amazed that a bug that is so simple to trigger has apparently gone unnoticed for years.

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Exploits :

htmlLawed 1.2.5 Remote Command Execution
Online Tours And Travels Management System 1.0 SQL Injection
osCommerce 4 Cross Site Scripting
ESET NOD32 Antivirus 17.1.11.0 Unquoted Service Path
Doctor Appointment Management System 1.0 Cross Site Scripting

Last 20