SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Web Browser)  >   Microsoft Internet Explorer Vendors:   Microsoft
Microsoft Internet Explorer Can By Crashed By Loading 'C:\aux' URL
SecurityTracker Alert ID:  1007126
SecurityTracker URL:  http://securitytracker.com/id/1007126
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Jul 7 2003
Impact:   Denial of service via network
Exploit Included:  Yes  
Version(s): 6.0
Description:   A denial of service vulnerability was reported in Microsoft Internet Explorer. A remote user can create HTML that, when loaded, will cause the target user's browser to crash.

It is reported that when the browser attempts to load the URL 'C:\aux', the browser will stop responding.

The vendor has reportedly been notified.

Impact:   A remote user can create HTML that will cause the browser to crash.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.microsoft.com/technet/security/ (Links to External Site)
Cause:   Exception handling error

Message History:   None.


 Source Message Contents

Subject:  [Full-Disclosure] Internet Explorer 6 DoS Bug


Hi,
If you enter C:\aux in the adressline of the IE (not EXPLORER, InternetExplorer)
and hit enter, the window will freeze. This bug is simmilar to C:\con\con
but not as dagerous. But its the same reason, naimly that windows trys to
open aux, a hardware device in earlier windows versions.
I already sended an email to Microsoft but they said the bug wouldn't exist.

Bye

Fabian Becker (www.neonomicus.ionichost.com)
fabian.becker2@epost.de




________________________________________


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC