Full Disclosure mailing list archives
RE: IE exploit going around on irc
From: "Thor Larholm" <thor () pivx com>
Date: Tue, 6 Apr 2004 14:15:14 -0700
I'm sorry, I thought you were already aware of the text/x-scriptlet object variation of Ibiza which was exploited in the wild before Ibiza was even discussed on Bugtraq - I assumed you would catch my reference to this. Either way, this is still the ms-its/ms-itss CHM issue regardless of how you trigger it. My bad, I will elaborate further in the future so we can avoid discussing semantics. Regards Thor Larholm Senior Security Researcher PivX Solutions 24 Corporate Plaza #180 Newport Beach, CA 92660 http://www.pivx.com thor () pivx com Phone: +1 (949) 231-8496 PGP: 0x5A276569 6BB1 B77F CB62 0D3D 5A82 C65D E1A4 157C 5A27 6569 PivX defines "Proactive Threat Mitigation". Get a FREE Beta Version of Qwik-Fix <http://www.qwik-fix.net> -----Original Message----- From: Jelmer [mailto:jkuperus () planet nl] Sent: Tuesday, April 06, 2004 2:05 PM To: Thor Larholm; David Jacoby; full-disclosure () lists netsys com Subject: Re: [Full-disclosure] IE exploit going around on irc
What Niek forwarded is using the Ibiza CHM exploit that deals with improper privileges gained through the ms-its/ms-itss URL protocol handlers which is still unpatched.
Bzzzzt wrong It's a variation of the ibiza exploit, the ibiza exploit didn't work on XP SP1, I know so because I checked at the time and yes this variation is still unpatched _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- IE exploit going around on irc Niek Baakman (Apr 05)
- Re: IE exploit going around on irc François Harvey (Apr 05)
- Re: IE exploit going around on irc David Jacoby (Apr 06)
- <Possible follow-ups>
- Re: IE exploit going around on irc http-equiv () excite com (Apr 05)
- IE exploit going around on irc Feher Tamas (Apr 06)
- RE: IE exploit going around on irc Thor Larholm (Apr 06)
- Re: IE exploit going around on irc Jelmer (Apr 06)
- Re: IE exploit going around on irc http-equiv () excite com (Apr 06)
- RE: IE exploit going around on irc Thor Larholm (Apr 06)
- Re: IE exploit going around on irc Jelmer (Apr 06)
- Re: IE exploit going around on irc Lise Moorveld (Apr 07)