[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Shortcut...... may cause 100% cpu use!!!

To: full-disclosure@lists.netsys.com
Subject: [Full-Disclosure] Shortcut...... may cause 100% cpu use!!!
From: Bipin Gautam <door_hUNT3R@blackcodemail.com>
Date: Thu, 30 Oct 2003 06:02:41 -0800 (PST)

--[Effected]--
The exploit has been tested in WINDOWS xp

--[Description]--
Running a specially crafted "shortcut" that points to itself! IF executed 
through 'Windows Explorer' or IE may cauze 100% cpu use... THAT CAN LEAD TODoS 
in the victim.



--[Simple! proof of concept]--
http://www.geocities.com/visitbipin/shortcut.zip

[Note: You *may* have to RUN the 'shortcut' few* time's to have a effective 
100% CPU use...]


EXTRACT this file and copy it to c:\   [root] and double click IT... or open it 
through IE after copying it in c:\
 



PS: Anyone willing to craft* it for IIS        (O;

--[credit]--
Bipin Gautam (hUNT3R)

_____________________________________________________________
Secure mail ---> http://www.blackcode.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Shortcut...... may cause 100% cpu use!!!
  - From: "Ag. System Administrator" <sysadmin@agent.co.il>
- Re: [Full-Disclosure] Shortcut...... may cause 100% cpu use!!!
  - From: Tim <tim-security@sentinelchicken.org>
- Re: [Full-Disclosure] Shortcut...... may cause 100% cpu use!!!
  - From: "Maxime Ducharme" <maxime@pandore-design.com>

Prev by Date: [Full-Disclosure] Shortcut...... may cause 100% cpu use!!!
Next by Date: Re: [Full-Disclosure] Shortcut...... may cause 100% cpu use!!!
Previous by thread: [Full-Disclosure] Shortcut...... may cause 100% cpu use!!!
Next by thread: Re: [Full-Disclosure] Shortcut...... may cause 100% cpu use!!!
Index(es):
- Date
- Thread