Re: Crash IE with shell://:

[cory <loon () loadedpenguin com>]

On Tue, 22 May 2001, Kayne Ian (Softlab) transferred the following data:

> All...
>       Wrote this little thing in a few spare mins. I'm no use with
> javascript or webbased coding, so I'm sure there's much more you could do
> with this. Anyway, attached is a .html that crashes all the machines I
> tested it on - be prepared to loose explorer.exe if you run it. I guess this
> is a working exploit/bug (and a really annoying one if it starts appearing
> on the web), so if someone wants to forward this to the appropriate people
> (bugtraq? microsoft?) then go for it... Also, if we could narrow down
> exactly what it takes to fix it in the current versions, that would be good
> too.
>
> enjoy...
>
> Ian Kayne
> Technical Specialist - IT Solutions
> Softlab Ltd - A BMW Company

Tried this against IE 5 ver. 5.00.2614.3500 with little result.
The .htm shows up for a few seconds, then you recieve a 404 , with the
Address box changing from http://blah.com/iecrashtest.htm to just
/test.htm (strange?). During the change to a 404, a smaller box appears
with res://C:\\Windows\System\SHDOCLC.DLL/syntax.htm explaining that the
page can not be displayed, possibly because of removal or name change. It
then request you do the following:
        Open the res://C:\WINDOWS\SYSTEM\SHDOCLC.DLL/syntax.htm#shell://
        home page, and then look for the links to the information you
        want.

Hope that helps

cory