AOH :: HP Unsorted I :: VA2457.HTM

Internet explorer 7.0 stack overflow



Internet explorer 7.0 stack overflow
Internet explorer 7.0 stack overflow





Application: Internet explorer 7.0
OS: Windows xp - sp3 - full patch (windows vista don't work!)
------------------------------------------------------
1 - Description
2 - Vulnerability
3 - POC/EXPLOIT


------------------------------------------------------
Description


Internet explorer is a default browser of windows

------------------------------------------------------
Vulnerability

The vulnerability is caused when you trying send some data, using a form.
This caused a stack overflow with the possibility of running arbitrary code.

The bug is in the module "shell32", when you analize with debug returns "stack overflow" and the memory address.

------------------------------------------------------
POC/EXPLOIT


http://jplopezy.fortunecity.es/ietest.html 


------------------------------------------------------
Juan Pablo Lopez Yacubian

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.