- Microsoft Internet Explorer Frameset Denial of Service Vulnerability
- Posted by imhotep on June 6th, 2006
Microsoft Internet Explorer Frameset Denial of Service Vulnerability
"Microsoft Internet Explorer is affected by a denial-of-service
vulnerability. This issue arises because the application fails to handle
exceptional conditions in a proper manner.
An attacker may exploit this issue by enticing a user to visit a malicious
site and then to click anywhere on the page. This results in a
denial-of-service condition in the application.
Internet Explorer version 6 is vulnerable to this issue; earlier versions
may also be affected."
http://www.securityfocus.com/bid/18277/discuss
-- Imhotep
- Posted by Sebastian Gottschalk on June 6th, 2006
imhotep wrote:
Frame-set where a frame tries to resize itself crashes IE.
[X] Tell news.
- Posted by imhotep on June 7th, 2006
Sebastian Gottschalk wrote:
....wait a month and it will be a buffer overun vulnerability!
Im
- Posted by Sebastian Gottschalk on June 7th, 2006
imhotep wrote:
Pretty unlikely that this could turn out as such.
- Posted by imhotep on June 7th, 2006
Sebastian Gottschalk wrote:
....and why do you say this?
-- Imhotep
- Posted by Sebastian Gottschalk on June 7th, 2006
imhotep wrote:
Would you please take a close look on the exploit? And maybe at the
relevant part of the source code? It's a simple assertation error.
- Posted by imhotep on June 7th, 2006
Sebastian Gottschalk wrote:
....I don't doubt it. I am saying what else can be done with it? Put on
your ""creative hat"....most coding errors can be expolited...
Im
