Full Disclosure mailing list archives

Re: PoC for the 2 new WMF vulnerabilities (DoS)

From: Drew Masters <drewmasters () gmail com>
Date: Tue, 10 Jan 2006 12:19:57 +0000

Not sure if it's been previously mentioned...

It's possible to cause similiar crashes by making a malformed call to
startdoc instead of setabortproc with 64bytes of garbage data.

Cheers

Drew

On 09/01/06, Andrey Bayora <andrey () securityelf org> wrote:


Hello list,

In case, someone interested:

Here is the PoC for the 2 new WMF vulnerabilities discovered by cocoruder
(http://ruder.cdut.net) and does not covered by MS06-001.

You can download WMF images at:
http://www.securityelf.org/files/WMF-DoS.rar

Regards,
Andrey.



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

PoC for the 2 new WMF vulnerabilities (DoS) Andrey Bayora (Jan 09)
- Re: PoC for the 2 new WMF vulnerabilities (DoS) Danny (Jan 09)
  - Re: PoC for the 2 new WMF vulnerabilities (DoS) KF (lists) (Jan 09)
    - Re: PoC for the 2 new WMF vulnerabilities (DoS) M. Shirk (Jan 09)
  - Re: PoC for the 2 new WMF vulnerabilities (DoS) Stan Bubrouski (Jan 09)
  - Re: PoC for the 2 new WMF vulnerabilities (DoS) Andrey Bayora (Jan 10)
- Re: PoC for the 2 new WMF vulnerabilities (DoS) Drew Masters (Jan 10)
- <Possible follow-ups>
- RE: PoC for the 2 new WMF vulnerabilities (DoS) Michael Bringle (Jan 10)
  - Re: PoC for the 2 new WMF vulnerabilities (DoS) Morning Wood (Jan 10)
- RE: PoC for the 2 new WMF vulnerabilities (DoS) Edward Pearson (Jan 10)
- RE: PoC for the 2 new WMF vulnerabilities (DoS) Todd Towles (Jan 10)
- RE: PoC for the 2 new WMF vulnerabilities (DoS) Todd Towles (Jan 10)