[38129] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

applicable exploit for winxp-sp2-uptodate Internet Explorer

daemon@ATHENA.MIT.EDU (Liu Die Yu)
Tue Jan 11 14:15:49 2005

Date: 11 Jan 2005 16:33:15 -0000
Message-ID: <20050111163315.8810.qmail@www.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: Liu Die Yu <liudieyu@umbrella.name>
To: bugtraq@securityfocus.com

patch will come in hours(at least i believe so).

many people(paul of greyhats and mike, sandblad of secunia and shreddersub7) already provided proof-of-concept remote-code-execution exploit for winxp-sp2-uptodate Internet Explorer.

the problem is: their code is simply not applicable in real attack. so i made this:
http://0daymon.org/monitor/injecthh-op-2/dir/injecthh_op_2-code_by_liudieyu
http://0daymon.org/monitor/injecthh-op-2/dir.zip


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[38129] in bugtraq

applicable exploit for winxp-sp2-uptodate Internet Explorer

daemon@ATHENA.MIT.EDU (Liu Die Yu)Tue Jan 11 14:15:49 2005

daemon@ATHENA.MIT.EDU (Liu Die Yu)
Tue Jan 11 14:15:49 2005