|
Full Disclosure
mailing list archives
Some 0day Pocs
From: "Muts" <muts () offensive-security com>
Date: Mon, 9 Apr 2007 13:12:06 +0300
# Mati Aharoni
# muts [.@.] offensive-security.com <mailto:muts () offensive-security com>
# http://www.offensive-security.com
My 7 line python fuzzer found several file format bugs in 3 hours. Quite
alarming.
No deep analysis was done, I leave that to the community.
These are some of the results:
file789-1.doc - Unspecified Overflow in word 2007 - Crash in wwlib.dll -
Code execution is not trivial.
file798-1.doc - Word 2007 CPU exhaustion DOS - CPU shoots up to 100 %.
file613-1.doc - Word 2007 CPU exhaustion DOS + ding - CPU shoots up to 100
%, and windows goes "ding!"
evil.hlp - Heap overflow in Windows HLP files - Funky heap overflow crash,
more than meets the eye (does this sound familiar to anyone?)
These files can be found at
http://www.offensive-security.com/0day/0day.tar.gz
Be safe,
Muts
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
 By Date 
By Thread
Current thread:
- Some 0day Pocs Muts (Apr 09)
| 
