RE: IE Denial of service (sorta)

["John Thornton" <jthornton () hackersdigest com>]

I tried www.cgisecurity.com/crash.shtml as well as crash2.shtml

Windows XP Professional, 512RAM 6.0.2600.0000.xpClient.010817-1148
crash.shtml and crash2.shtml loaded fine

Windows 2000 Server Gold, 128RAM, IE 6.0.2600.0000
crash.shtml and crash2.shtml loaded fine

Windows 2000 Professional Gold, 256RAM, IE 6.00.2462.0000
crash.shtml and crash2.shtml crashed IE. Two error messages I can send if
you like.

Windows 98se, 128RAM, IE 5.50.4134.0600
crash.shtml and crash2.shtml crashed IE. No error messages.


H  A  C  K  E  R  '  S                                        D  I  G  E  S
T
-----------------------------------------------------------------
John Thornton  -  jthornton () hackersdigest com
Editor in Chief
Hackers Digest -  www.hackersdigest.com
-----------------------------------------------------------------
                              A magazine for people like you...


----- Original Message -----
From: "zeno" <zeno () cgisecurity net>
To: <incidents () securityfocus com>; <bugtraq () securityfocus com>;
<vuln-dev () securityfocus com>
Sent: Tuesday, December 04, 2001 4:00 PM
Subject: IE Denial of service (sorta)

> Hey
>
> I found this months ago and though it was patched but it managed to cause
new errors
> on win me with all updates on IE in kernel. On default win2k IE install it
sucks up 100 percent cpu
> for half on hour(128 meg of ram).
>
> Please click on it and tell me what happens to you.
> (include version and patch info)
>
> Its a image tag with some garbage characters in a particular order.
> I haven't bothered contacting microsoft yet because I'm not sure just how
common a problem
> this is, and with what patches installed.
>
> www.cgisecurity.com/crash.shtml
> also try /crash2.shtml
>
> -zenomorph