[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Full-Disclosure] Re: Re: Microsoft Windows LoadImage API Integer Buffer overflow
- To: Brett Glass <brett@xxxxxxxxxx>
- Subject: [Full-Disclosure] Re: Re: Microsoft Windows LoadImage API Integer Buffer overflow
- From: "flashsky" <flashsky@xxxxxxxxxx>
- Date: Sat, 25 Dec 2004 10:19:59 +0800
This vul can be exploited, at
http://www.xfocus.net/flashsky/icoExp/index.html ,i give a test exp(open 28876
port) for windows xp sp1, but it need html sctipt run and allocate memory.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html