Full Disclosure mailing list archives
Re: GAYER THAN AIDS ADVISORY #01: IE 5 remote code execution
From: Cael Abal <lists2 () onryou com>
Date: Sun, 15 Feb 2004 14:35:42 -0500
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 |> .. Rrrrriiiiggghhhttt. Way to go, using a signed integer for an |> offset. Now all we have to do is create a BMP with bfOffBits > 2^31, | | I would caution everyone against assuming that this code has not | been altered since it left the confines of Redmond. If I were | to steal Microsoft code and release it to the Internet, I'd be | tempted to make a few strategic modifications first, just to | stir things up. Especially if I were, shall we say, not exactly | a Microsoft fan... Interesting point, but keep in mind the original author also included a POC which (reportedly, unconfirmed) affected IE5. That'd suggest it is indeed Redmond code. C -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (MingW32) iD8DBQFAL8oOR2vQ2HfQHfsRAlq2AJ4pP2TxCp2Ac0uIMxou3uuZVZbMjwCfWQWA PsPhhr546k91p0ssj/ps0cg= =k6nN -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- RE: Re: Re: GAYER THAN AIDS ADVISORY #01: IE 5 remote code execution, (continued)
- RE: Re: Re: GAYER THAN AIDS ADVISORY #01: IE 5 remote code execution Byron Copeland (Feb 18)
- Re: GAYER THAN AIDS ADVISORY #01: IE 5 remote code execution madsaxon (Feb 18)
- Re: Re: GAYER THAN AIDS ADVISORY #01: IE 5 remote code execution Brent J. Nordquist (Feb 18)
- Re: Re: GAYER THAN AIDS ADVISORY #01: IE 5 remote code execution Jorrit Kronjee (Feb 19)
- Re: GAYER THAN AIDS ADVISORY #01: IE 5 remote code execution Cael Abal (Feb 18)
- Re: GAYER THAN AIDS ADVISORY #01: IE 5 remote code execution Joshua Levitsky (Feb 18)
- os x mass mailers petard (Feb 18)
- Re: GAYER THAN AIDS ADVISORY #01: IE 5 remote code execution Cael Abal (Feb 15)