Microsoft Internet Explorer 7.0 suffers from a stack overflow vulnerability when accepting a very large payload for any form variable.
04c28a2e489f7f974c91bd9f44d1683672b451a1bcb121885ef732f143930f2a
Application: Internet explorer 7.0
OS: Windows xp - sp3 - full patch (windows vista don't work!)
------------------------------------------------------
1 - Description
2 - Vulnerability
3 - POC/EXPLOIT
------------------------------------------------------
Description
Internet explorer is a default browser of windows
------------------------------------------------------
Vulnerability
The vulnerability is caused when you trying send some data, using a form.
This caused a stack overflow with the possibility of running arbitrary code.
The bug is in the module "shell32", when you analize with debug returns "stack overflow" and the memory address.
------------------------------------------------------
POC/EXPLOIT
http://jplopezy.fortunecity.es/ietest.html
------------------------------------------------------
Juan Pablo Lopez Yacubian
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed