funsec mailing list archives
(Yet Another) Internet Explorer "createTextRang" Download Shellcoded E xploit PoC posted
From: "Fergie" <fergdawg () netzero net>
Date: Fri, 31 Mar 2006 19:03:20 GMT
Yep: http://www.milw0rm.com/exploits/1628 [snip] /* * * Internet Explorer "createTextRang" Download Shellcoded Exploit (2) * Bug discovered by Computer Terrorism (UK) * http://www.computerterrorism.com/research/ct22-03-2006 * * Affected Software: Microsoft Internet Explorer 6.x & 7 Beta 2 * Severity: Critical * Impact: Remote System Access * Solution Status: Unpatched * * E-Mail: atmaca () icqmail com * Web: http://www.spyinstructors.com,http://www.atmacasoft.com * Credit to Kozan,SkyLined,delikon,Darkeagle,Stelian Ene * */ /* * * This one is more faster than all released createTextRange exploits * because it uses last version of SkyLined's heap spraying code, * special 10x goes to him. * */ [snip] - ferg -- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawg () netzero net or fergdawg () sbcglobal net ferg's tech blog: http://fergdawg.blogspot.com/ _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- (Yet Another) Internet Explorer "createTextRang" Download Shellcoded E xploit PoC posted Fergie (Mar 31)