Vulnerability Development mailing list archives
Re: AW: Potential overflow in Internet Explorer
From: b1995 <b1995 () HOME COM>
Date: Sun, 4 Feb 2001 18:30:49 -0800
Hi! Couldn't reproduce on Win98SE IE5.0 version 5.00.2614.3500 128bit with Q240308 hotfix installed - http://support.microsoft.com/support/kb/articles/Q240/3/08.ASP ----- Original Message ----- From: Gentleman <shadowtrooper () GMX DE> To: <VULN-DEV () SECURITYFOCUS COM> Sent: Saturday, February 03, 2001 11:09 AM Subject: AW: Potential overflow in Internet Explorer
HI, I couldn't reproduce this error, Version: 5.50.4134.0600IS Tested following Adresses:
http://www.t-online.de/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaa
http://go.to/Shadowtrooper/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAA
http://www.gmx.de/AAAAAAAAAAAaaaaaaaaaaaaaaaAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
... some other length of 'A'-Strings and other Adresses couldn't reproduce
your result.
Greetings from
Gentleman
www.gcf.de
http://go.to/Shadowtrooper
-----Ursprüngliche Nachricht-----
Von: VULN-DEV List [mailto:VULN-DEV () SECURITYFOCUS COM]Im Auftrag von
joetesta () HUSHMAIL COM
Gesendet: Dienstag, 30. Januar 2001 05:12
An: VULN-DEV () SECURITYFOCUS COM
Betreff: Potential overflow in Internet Explorer
Hi all --
While doing some testing on a web server, I discovered that Internet
Explorer crashes when the following URL is typed in the address bar:
http://www.server.com/[a lot of 'A's]
Here is the resulting dump:
IEXPLORE caused an invalid page fault in
module <unknown> at 0000:41414141.
Registers:
EAX=00000000 CS=017f EIP=41414141 EFLGS=00010246
EBX=00000000 SS=0187 ESP=0058568c EBP=41414141
ECX=0000002e DS=0187 ESI=01eef058 FS=581f
EDX=004bcd28 ES=0187 EDI=0042b6ac GS=0000
Bytes at CS:EIP:
Stack dump:
41414141 41414141 41414141 41414141
41414141 41414141 41414141 41414141
41414141 41414141 41414141 41414141
41414141 41414141 41414141 41414141
I am using version 5.50.4522.1800 on Win98 SE with all critical
updates
installed. I attempted to reproduce this crash on three other machines
without success. Their version numbers where:
5.00.2614.3500,
5.50.4134.0100,
5.50.4134.0600
It seems as though this may be some sort of regression error,
bad mix of software, or both. Can anyone else reproduce this?
- Joe Testa ( joetesta () hushmail com )
Current thread:
- Potential overflow in Internet Explorer joetesta (Feb 03)
- Re: Potential overflow in Internet Explorer Greg Rice (Feb 04)
- AW: Potential overflow in Internet Explorer Gentleman (Feb 04)
- Re: AW: Potential overflow in Internet Explorer b1995 (Feb 04)
- Re: Potential overflow in Internet Explorer Robbert Muller (Feb 04)
- Re: Potential overflow in Internet Explorer Wouter Clarie (Feb 04)
- Re: Potential overflow in Internet Explorer Lord Soth (Feb 04)
- Re: Potential overflow in Internet Explorer Christopher Kunz (Feb 04)
- Re: Potential overflow in Internet Explorer Rio Martin (Feb 05)
- Re: Potential overflow in Internet Explorer Felipe Franciosi (Feb 05)
- Message not available
- Re: Potential overflow in Internet Explorer Felipe Franciosi (Feb 06)
- Re: Potential overflow in Internet Explorer Mike Fedyk (Feb 22)
- Message not available
- Re: Potential overflow in Internet Explorer William N. Zanatta (Feb 05)
- <Possible follow-ups>
- Re: Potential overflow in Internet Explorer Eric D. Williams (Feb 05)