Re: [Full-Disclosure] Internet Explorer 6 DoS Bug
From: Joao Rodrigo Coimbra (jrcoimbra_at_terra.com.br)
Date: 07/08/03
- Previous message: M. Osten: "Re: [Full-Disclosure] Internet Explorer 6 DoS Bug"
- In reply to: Thor Larholm: "Re: [Full-Disclosure] Internet Explorer 6 DoS Bug"
- Next in thread: Gary Warner: "Re: [Full-Disclosure] Internet Explorer 6 DoS Bug"
- Reply: Gary Warner: "Re: [Full-Disclosure] Internet Explorer 6 DoS Bug"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <full-disclosure@lists.netsys.com> Date: Mon, 7 Jul 2003 22:47:43 -0300
Positively confirmed on 6.0.2800.1106.xpclnt_qfe.021108-2107, but a friend
o'mine could not reproduce it, running IE 6 with SP1.
Regards
Joao Rodrigo F. Coimbra, MCSE, MCDBA, MCAD, MCT
http://www.netverse.com.br
rodrigo@netverse.com.br
----- Original Message -----
From: "Thor Larholm" <lists.netsys.com@jscript.dk>
To: <fabian.becker2@epost.de>; <full-disclosure@lists.netsys.com>
Cc: <secure@microsoft.com>
Sent: Monday, July 07, 2003 3:59 PM
Subject: Re: [Full-Disclosure] Internet Explorer 6 DoS Bug
> Positively confirmed on 6.0.2800.1106.xpsp2.030422-1633 when entering
C:\aux in
> the Address Bar.
>
> Seeing as the behavior of this scenario is inconsistent between list
subscribers
> with the same IE version, one could believe the bug is not in IE but in
urlmon
> or shellexecute somewhere.
>
>
> Regards
> Thor Larholm
> PivX Solutions, LLC - Senior Security Researcher
>
> ----- Original Message -----
> From: <fabian.becker2@epost.de>
> To: <full-disclosure@lists.netsys.com>
> Sent: Monday, July 07, 2003 6:25 PM
> Subject: [Full-Disclosure] Internet Explorer 6 DoS Bug
>
>
> > Hi,
> > I found a bug in IE6 ón Windows XP with all Service Packs and Patches
> installed:
> > If you enter C:\aux in the adressline of the IE (not EXPLORER,
> InternetExplorer)
> > and hit enter, the window will freeze. This bug is simmilar to
C:\con\con
> > but not as dagerous. But its the same reason, naimly that windows trys
to
> > open aux, a hardware device in earlier windows versions.
> > I already sended an email to Microsoft but they said the bug wouldn't
exist.
> >
> > Bye
> >
> > Fabian Becker (www.neonomicus.ionichost.com)
> > fabian.becker2@epost.de
> >
> >
> >
> >
> > ________________________________________
> > Mehr Power für Ihre eMail - mit den neuen Leistungspaketen bei
> http://www.epost.de
> >
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.netsys.com/full-disclosure-charter.html
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Previous message: M. Osten: "Re: [Full-Disclosure] Internet Explorer 6 DoS Bug"
- In reply to: Thor Larholm: "Re: [Full-Disclosure] Internet Explorer 6 DoS Bug"
- Next in thread: Gary Warner: "Re: [Full-Disclosure] Internet Explorer 6 DoS Bug"
- Reply: Gary Warner: "Re: [Full-Disclosure] Internet Explorer 6 DoS Bug"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
