Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: greek characters buffer overflow, AGAIN!

From: "Dustin E. Childers" <dustin () acm org>
Date: Tue, 16 Apr 2002 18:41:05 -0700
I was not able to re-produce this in IE 5.00.3315.1000 SP2.

Dustin E. Childers
Security Administrator. CEO, Digitux Security, Inc.
http://www.digitux.net/

----- Original Message -----
From: "MegaHz" <admin () cyhackportal com>
To: <vuln-dev () securityfocus com>; <bugtraq () securityfocus com>;
<vulnwatch () vulnwatch org>
Cc: <security () microsoft com>
Sent: Tuesday, April 16, 2002 2:40 AM
Subject: greek characters buffer overflow, AGAIN!




One year ago I discovered a buffer overflow in the address bar of IE 5.0

using greek characters, look at:

http://www.cyhackportal.com/modules.php?name=News&file=article&sid=81


Today I discover this:


http://www.bestbuy.com.cy/cgi-bin/buy.storefront/<<<áx1388>>>/Product/View/C
MPL_00_GDXbox


(do not use: <<<,>>>)
and yes, Internet explorer, exited by itself. Very strange. I don't know

why, pls try that

I uploaded here a sample html,
http://megahz.cyhackportal.com/hey.html

I test it out on 3 pcs I have at my work, but there was only one that

seemed to have the bug, and resolve on closing the IE.


maybe is bestbuy's problem, and the software they use,
the original url was:


http://www.bestbuy.com.cy/cgi-bin/buy.storefront/3cbbef7d0794c70e27a4c30e950
106f2/Product/View/CMPL_00_GDXbox



maybe is storefronts problem...


pls test it out, and let me know,



Thank you,


/*
 * Andreas Constantinides (MegaHz)
 * http://www.cyhackportal.com
 *
 */
Previous By Date Next
Previous By Thread Next

Current thread: