Re: [Full-Disclosure] MSIE <IFRAME> and <FRAME> tag NAME property bufferoverflow PoC exploit (was: python does mangleme (with IE bugs!))

To: "Berend-Jan Wever" <skylined@xxxxxxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxx>, <bugtraq@xxxxxxxxxxxxxxxxx>
Subject: Re: [Full-Disclosure] MSIE <IFRAME> and <FRAME> tag NAME property bufferoverflow PoC exploit (was: python does mangleme (with IE bugs!))
From: "morning_wood" <se_cur_ity@xxxxxxxxxxx>
Date: Tue, 2 Nov 2004 05:44:16 -0800
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <Pine.LNX.4.44.0410232125460.18307-100000@xxxxxxxxxxxxxxxx> <001001c4ba35$ab8d6560$0000fea9@grotedoos> <004601c4c074$bcbe1650$0100a8c0@grotedoos>

bindshell success ( html run from local )
connect from remote success...
this is NASTY
if shellcode modified this will do reverse or exe drop i assume....

good work,

Donnie Werner

References:
- python does mangleme (with IE bugs!)
  - From: ned
- Re: [Full-Disclosure] python does mangleme (with IE bugs!)
  - From: Berend-Jan Wever

Prev by Date: MSIE <IFRAME> and <FRAME> tag NAME property bufferoverflow PoC exploit (was: python does mangleme (with IE bugs!)) (fwd)
Next by Date: Rv: [Full-Disclosure] MSIE <IFRAME> and <FRAME> tag NAME property bufferoverflow PoC exploit (was: python does mangleme (with IE bugs!))
Previous by thread: Re: [Full-Disclosure] python does mangleme (with IE bugs!)
Next by thread: [BUGZILLA] Vulnerabilities in Bugzilla 2.16.6 and 2.18rc2
Index(es):
- Date
- Thread