MSIE Crash Examples.

By secgeeks - Posted on November 16th, 2007

Tagged:

233

vote

While sifting through my offline browser vulnerabilities yesterday, I came across these ActiveXObject hacks. These are already known, and were found with a fuzzer, but they still work in Internet Explorer. I show them because they set a good example on how simple browser hacks can be, because not all vulnerabilities are complex. The examples below will crash Internet Explorer in a blink. These results in a NULL pointer dereference and an unhandled memory access violation.

Bookmark/Search this post with:

Trackback URL for this post:

http://secgeeks.com/trackback/1220

Similar entries

Recent blog posts

Newly Popular

Drupalit monthly

Drupalit weekly

Drupalit daily

Drupalit hottest

Drupalit latest

Recent comments

Problem solved!!!!
30 weeks 4 days ago
New version here
33 weeks 1 day ago
thanks for sharing.
1 year 1 week ago
links
1 year 2 weeks ago
Link to preplay
1 year 2 weeks ago
so now you are on linkedin
1 year 18 weeks ago
Outlook Email search tool
1 year 34 weeks ago
nice tool..
2 years 24 weeks ago
Preplay for windows
2 years 26 weeks ago
yeah,foxit is god
2 years 28 weeks ago

Get SecGeeks Feeds in your email:

Navigation

Who's online

There are currently 0 users and 7 guests online.

BlogRoll

Hack In The Box

http://maltainfosec.org
http://sipvicious.org/blog/
astalavista.com
Fake antivirus removal instructions

Partners

www.techmantras.com
Play Free Bingo at WikiBingo.co.uk
Find the latest Scratch Cards Games
Play bingo with no commitment-bingo winner.
Rent Sell Property
Post your Classified Ads for free
add your link here..