GoFuckYourself.com - Adult Webmaster Forum - View Single Post - New IE exploit out, url to patch included.

extreme · 07-06-2004, 09:43 PM

A new variant of the last IE bug is out using Shell.Application instead, once again making code execution possible just by surfing a bad page. This has been out for a couple of days but just now I got to test that it really worked.

Simple test here (executes "cmd.exe /c pause"), worked for me (IE6 fully patched):
http://62.131.86.111/security/idiots.../installer.htm

No patch from microsoft out yet but EEYE wipped something up that should fix it:
http://www.eeye.com/html/research/al...L20040610.html

07-06-2004, 09:43 PM
extreme Confirmed User Industry Role: Join Date: Oct 2002 Location: lalaland Posts: 2,120	New IE exploit out, url to patch included. A new variant of the last IE bug is out using Shell.Application instead, once again making code execution possible just by surfing a bad page. This has been out for a couple of days but just now I got to test that it really worked. Simple test here (executes "cmd.exe /c pause"), worked for me (IE6 fully patched): http://62.131.86.111/security/idiots.../installer.htm No patch from microsoft out yet but EEYE wipped something up that should fix it: http://www.eeye.com/html/research/al...L20040610.html __________________ Browse and find new paysites with screenshot-preview Export FHGs/FLVs/Paysites by JSON, XML, CSV and Text Find FHGs/FLVs/Paysites from any given Category or Search-query Last edited by extreme; 07-06-2004 at 09:44 PM..