[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Issue 17 - Msxml2.XMLHTTP.3.0 response handling memory corruption (ms10-051, CVE-2010-2561)

To: Full-disclosure <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: [Full-disclosure] Issue 17 - Msxml2.XMLHTTP.3.0 response handling memory corruption (ms10-051, CVE-2010-2561)
From: Berend-Jan Wever <berendjanwever@xxxxxxxxx>
Date: Tue, 10 Aug 2010 20:57:08 +0200

Just facts, no marketing (sorry Alex :P).

Microsoft advisory:
http://www.microsoft.com/technet/security/bulletin/ms10-051.mspx
Blog post/discussion: http://skypher.com/index.php/2010/08/10/ms10-051/
<http://skypher.com/index.php/2010/08/10/ms10-051/>Timeline, details and
repro: http://code.google.com/p/skylined/issues/detail?id=17

Cheers,
SkyLined
<http://skypher.com/>
Berend-Jan Wever <berendjanwever@xxxxxxxxx>
http://skypher.com/SkyLined

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] ZDI-10-148: Microsoft Cinepak Codec CVDecompress Remote Code Execution Vulnerability
Next by Date: Re: [Full-disclosure] Reliable reports on attacks on medical software and IT-systems available?
Previous by thread: [Full-disclosure] ZDI-10-148: Microsoft Cinepak Codec CVDecompress Remote Code Execution Vulnerability
Next by thread: [Full-disclosure] [CORE-2010-0623] Microsoft Windows CreateWindow function callback vulnerability
Index(es):
- Date
- Thread