Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Vulnerability Development: Re: IE Crash - Anyone Seen This Before?

Re: IE Crash - Anyone Seen This Before?

From: Adam [Onet] <silentsupporter_at_poczta.onet.pl>
Date: Sat, 15 May 2004 23:45:42 +0200

it crashes on Windows XP, IE60 SP1

it seems that there's a bug in MSHTM.DLL - I believe there's a lack of
checking
if the ptr is NULL while trying to access ptr to one of the virtual methods
- this is the exact code that makes the program to crash:

mov ecx,[eax+2ch]

where eax is a ptr to the potential VMT (I believe) which is null in the
case

best regards
Adam

----- Original Message -----
From: "Nick Benson" <cryptic_mauler_at_linuxmail.org>
To: "xarabas" <news_security_reader_at_email.it>
Cc: <vuln-dev_at_securityfocus.com>
Sent: Saturday, May 15, 2004 4:38 PM
Subject: Re: IE Crash - Anyone Seen This Before?

> Windows 2000 Professional
> Internet Explorer
> Version : 6.0.2800.1106
> Update Versions: SP1, Q832894, Q330994, Q837009, Q831167
>
> It crashs on that. I had some friends with XP test and for some it didnt
crash them.
>
> --
> ______________________________________________
> Check out the latest SMS services @ http://www.linuxmail.org
> This allows you to send and receive SMS through your mailbox.
>
>
> Powered by Outblaze
Received on May 17 2004

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos