[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] PoC for the 2 new WMF vulnerabilities (DoS)

To: Andrey Bayora <andrey@xxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] PoC for the 2 new WMF vulnerabilities (DoS)
From: Drew Masters <drewmasters@xxxxxxxxx>
Date: Tue, 10 Jan 2006 12:19:57 +0000

Not sure if it's been previously mentioned...

It's possible to cause similiar crashes by making a malformed call to
startdoc instead of setabortproc with 64bytes of garbage data.

Cheers

Drew

On 09/01/06, Andrey Bayora <andrey@xxxxxxxxxxxxxxx> wrote:
>
> Hello list,
>
> In case, someone interested:
>
> Here is the PoC for the 2 new WMF vulnerabilities discovered by cocoruder
> (http://ruder.cdut.net) and does not covered by MS06-001.
>
> You can download WMF images at:
> http://www.securityelf.org/files/WMF-DoS.rar
>
> Regards,
> Andrey.
>
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] PoC for the 2 new WMF vulnerabilities (DoS)
  - From: Andrey Bayora

Prev by Date: [Full-disclosure] List Charter
Next by Date: Re: [Full-disclosure] Gerald Eisenhaur
Previous by thread: Re: [Full-disclosure] PoC for the 2 new WMF vulnerabilities (DoS)
Next by thread: RE: [Full-disclosure] PoC for the 2 new WMF vulnerabilities (DoS)
Index(es):
- Date
- Thread