New IE exploit out, url to patch included. - GoFuckYourself.com

extreme · 07-06-2004, 09:43 PM

A new variant of the last IE bug is out using Shell.Application instead, once again making code execution possible just by surfing a bad page. This has been out for a couple of days but just now I got to test that it really worked.

Simple test here (executes "cmd.exe /c pause"), worked for me (IE6 fully patched):
http://62.131.86.111/security/idiots.../installer.htm

No patch from microsoft out yet but EEYE wipped something up that should fix it:
http://www.eeye.com/html/research/al...L20040610.html

extreme · 07-06-2004, 09:56 PM

alt. patch:
http://www.mozilla.org/products/firefox/

Evil1 · 07-06-2004, 10:03 PM

i got my patch a year before the last ie exploit came out @ opera.com

Phoenix · 07-06-2004, 10:04 PM

yeah screw it...i dont think ill ever open ie again

KRL · 07-06-2004, 10:05 PM

extreme · 07-06-2004, 10:08 PM

Quote:

Originally posted by Evil1
i got my patch a year before the last ie exploit came out @ opera.com

Opera seems good, but it's not free right, either you pay or you get ads?

nice sig btw but seems like you're missing some, feel free to click around in mine

Rep · 07-06-2004, 10:09 PM

might want to turn directory listing off or throw up an index page on the directories.

extreme · 07-06-2004, 10:11 PM

Quote:

Originally posted by Rep
might want to turn directory listing off or throw up an index page on the directories.

uh?

Rep · 07-06-2004, 10:14 PM

Quote:

Originally posted by extreme
uh?

Instead of giving away neatly packaged zip files of the exploit to the most reputable bunch of people on the internet.

http://62.131.86.111/security/idiots/

extreme · 07-06-2004, 10:19 PM

Quote:

Originally posted by Rep
Instead of giving away neatly packaged zip files of the exploit to the most reputable bunch of people on the internet.

http://62.131.86.111/security/idiots/

Missed that, not my site, found the url on a security mailling list. Theese exploitexamples are all over the place though... and clicking "view page source" isn't so hard right?

Rep · 07-06-2004, 10:21 PM

Quote:

Originally posted by extreme
Missed that, not my site, found the url on a security mailling list. Theese exploitexamples are all over the place though... and clicking "view page source" isn't so hard right?

I don't think jsp is client side processed, my apologies i thought it was your site.

Wilber · 07-06-2004, 10:37 PM

Chicken Little screams again.

First of all the "patch" your pointing to at http://www.eeye.com is dated June 10 2004. That's
a friggin' month ago.

Second the patch for ADODB.Stream exploit has been out for a friggin' week.
http://support.microsoft.com/?id=870669

And don't say ADODB.Stream fix isn't part of that crap your linking to because it is.
You can't run a friggin' ShellExecute() from a Web page.

For christ's sake you have a piece of fact from here and a tidbit of info from there
and you try and tie it all in to come to a conclusion.

I'm patched and your link doesn't do shit but popup an errored alert box. I'd screen-cap
it but what's the friggin' point.

I use IE exclusively
I don't run a virus checker
I don't run a firewall
all I have is a router
I don't click "Yes" on Security Warning popups
I don't click on bullshit "OK" alerts
I surf all over hell and back in all the warez and porn areas
I never get anything on my system

Go get patched and quit screamin' the sky is falling on IE for fuck sake.

Lane · 07-06-2004, 10:44 PM

I said this before but,

If you are looking for an IE alternative, I would recommend Mozilla or derivatives like Firefox instead of Opera. I find that Opera has compatibility issues with pages using a lot of java.script. For example you cant even login to Gmail with Opera.

extreme · 07-06-2004, 10:53 PM

Quote:

Originally posted by Wilber
Chicken Little screams again.

First of all the "patch" your pointing to at http://www.eeye.com is dated June 10 2004. That's
a friggin' month ago.

Second the patch for ADODB.Stream exploit has been out for a friggin' week.
http://support.microsoft.com/?id=870669

And don't say ADODB.Stream fix isn't part of that crap your linking to because it is.
You can't run a friggin' ShellExecute() from a Web page.

For christ's sake you have a piece of fact from here and a tidbit of info from there
and you try and tie it all in to come to a conclusion.

I'm patched and your link doesn't do shit but popup an errored alert box. I'd screen-cap
it but what's the friggin' point.

I use IE exclusively
I don't run a virus checker
I don't run a firewall
all I have is a router
I don't click "Yes" on Security Warning popups
I don't click on bullshit "OK" alerts
I surf all over hell and back in all the warez and porn areas
I never get anything on my system

Go get patched and quit screamin' the sky is falling on IE for fuck sake.

Who pissed in your serials this morning?

This isn't ADODB.Stream.

More info @ http://seclists.org/lists/bugtraq/2004/Jul/0024.html

Get a clue.

BlueQuartz · 07-06-2004, 11:05 PM

move along - nothing to see here

extreme · 07-06-2004, 11:06 PM

.. the actual pissing of course took place into your cereals and not your serials

.

BVF · 07-06-2004, 11:14 PM

Quote:

Originally posted by Wilber
That's
a friggin' month ago.

Second the patch for ADODB.Stream exploit has been out for a friggin' week.
http://support.microsoft.com/?id=870669

And don't say ADODB.Stream fix isn't part of that crap your linking to because it is.

You can't run a friggin' ShellExecute() from a Web page.

I'd screen-cap
it but what's the friggin' point.

Go get patched and quit screamin' the sky is falling on IE for fuck sake.

You say "friggin" throughout the whole post and then end with "fuck"?

Wilber · 07-06-2004, 11:16 PM

Quote:

Originally posted by BVF
You say "friggin" throughout the whole post and then end with "fuck"?

You can read, congrats.

KRL · 07-06-2004, 11:16 PM

Quote:

Originally posted by extreme
Opera seems good, but it's not free right, either you pay or you get ads?

nice sig btw but seems like you're missing some, feel free to click around in mine

$39 about the cost of one tank of gasoline.

Trust me its worth every single penny.

Wilber · 07-06-2004, 11:17 PM

Quote:

Originally posted by extreme
This isn't ADODB.Stream

What are you a broken record?

Get patched and quite makin' shit up.

extreme · 07-06-2004, 11:31 PM

Quote:

Originally posted by Wilber
What are you a broken record?

Get patched and quite makin' shit up.

I am fully patched. The exploit worked.

Microsoft killed ADODB.Stream with their latest patch (which you seem to be refering to).

Maybe this clears it up for you:
http://www.securityfocus.com/archive/1/367882

iwantchixx · 07-07-2004, 08:38 AM

Make the switch and never have to worry about exploits and patches and all that gay MS shit.

Opera Browser

MickeyG · 07-07-2004, 09:47 AM

you guys are funny with all this switch browsers crap. Its like the netscape revolution all over again. 99% of the web uses IE and if you design sites you should too.

ModelBuffet · 07-07-2004, 09:53 AM

Quote:

Originally posted by extreme
alt. patch:
http://www.mozilla.org/products/firefox/

Already installed that patch

KRL · 07-07-2004, 09:56 AM

Quote:

Originally posted by MickeyG
you guys are funny with all this switch browsers crap. Its like the netscape revolution all over again. 99% of the web uses IE and if you design sites you should too.

Lame rebuttal.

Opera has tons more cool and productive features than IE.

1 out of every 27 surfers is using Opera now.

I still keep IE and have Firefox also. But I'm using Opera 99% of the time now and I wouldn't unless it was a better browser and it is.

KRL · 07-07-2004, 09:57 AM

Quote:

Originally posted by Wilber
Chicken Little screams again.

First of all the "patch" your pointing to at http://www.eeye.com is dated June 10 2004. That's
a friggin' month ago.

Second the patch for ADODB.Stream exploit has been out for a friggin' week.
http://support.microsoft.com/?id=870669

And don't say ADODB.Stream fix isn't part of that crap your linking to because it is.
You can't run a friggin' ShellExecute() from a Web page.

For christ's sake you have a piece of fact from here and a tidbit of info from there
and you try and tie it all in to come to a conclusion.

I'm patched and your link doesn't do shit but popup an errored alert box. I'd screen-cap
it but what's the friggin' point.

I use IE exclusively
I don't run a virus checker
I don't run a firewall
all I have is a router
I don't click "Yes" on Security Warning popups
I don't click on bullshit "OK" alerts
I surf all over hell and back in all the warez and porn areas
I never get anything on my system

Go get patched and quit screamin' the sky is falling on IE for fuck sake.

You don't use Virus protection software. OK. That's smart. LOL. It's not a question of if, just when you will get nailed by one.

MickeyG · 07-07-2004, 10:02 AM

Quote:

Originally posted by KRL
Lame rebuttal.

Opera has tons more cool and productive features than IE.

1 out of every 27 surfers is using Opera now.

I still keep IE and have Firefox also. But I'm using Opera 99% of the time now and I wouldn't unless it was a better browser and it is.

I guess you dont remember the good old days of having to design sites for both netscape and IE... Pushing people to use other browsers is only going to create more work for us in the end.

Jakke PNG · 07-07-2004, 10:08 AM

Quote:

Originally posted by MickeyG
if you design sites you should too.

What drugs are you on? IE is not w3c compatible.. meaning that a site can look ok in IE but is totally fucked on opera and firefox. So... if you're designing sites you SHOULD NOT use IE.. as sites that work on firefox and opera work on IE as well.

MickeyG · 07-07-2004, 11:37 AM

Quote:

Originally posted by TeenGodFather
What drugs are you on? IE is not w3c compatible.. meaning that a site can look ok in IE but is totally fucked on opera and firefox. So... if you're designing sites you SHOULD NOT use IE.. as sites that work on firefox and opera work on IE as well.

If 90% of the world is using IE what do I care what it looks like on other browsers.

raymor · 07-07-2004, 11:38 AM

Quote:

Originally posted by Wilber
[
First of all the "patch" your pointing to at http://www.eeye.com is dated .

I use IE exclusively
I don't run a virus checker
I don't run a firewall
all I have is a router
I don't click "Yes" on Security Warning popups
I don't click on bullshit "OK" alerts
I surf all over hell and back in all the warez and porn areas
I never get anything on my system
[/B]

You forgot two lines:
I have no idea how many dozens of viruses, worms, and other crap and running rampant on my system.
I'm totally unaware that right now 3 of the people reading this post are running Back Orifice on my machine.

07-06-2004, 09:43 PM	#1
extreme Confirmed User Industry Role: Join Date: Oct 2002 Location: lalaland Posts: 2,120	New IE exploit out, url to patch included. A new variant of the last IE bug is out using Shell.Application instead, once again making code execution possible just by surfing a bad page. This has been out for a couple of days but just now I got to test that it really worked. Simple test here (executes "cmd.exe /c pause"), worked for me (IE6 fully patched): http://62.131.86.111/security/idiots.../installer.htm No patch from microsoft out yet but EEYE wipped something up that should fix it: http://www.eeye.com/html/research/al...L20040610.html __________________ Browse and find new paysites with screenshot-preview Export FHGs/FLVs/Paysites by JSON, XML, CSV and Text Find FHGs/FLVs/Paysites from any given Category or Search-query Last edited by extreme; 07-06-2004 at 09:44 PM..

07-06-2004, 09:56 PM	#2
extreme Confirmed User Industry Role: Join Date: Oct 2002 Location: lalaland Posts: 2,120	alt. patch: http://www.mozilla.org/products/firefox/ __________________ Browse and find new paysites with screenshot-preview Export FHGs/FLVs/Paysites by JSON, XML, CSV and Text Find FHGs/FLVs/Paysites from any given Category or Search-query

07-06-2004, 10:03 PM	#3
Evil1 Confirmed User Industry Role: Join Date: Mar 2002 Posts: 3,893	i got my patch a year before the last ie exploit came out @ opera.com __________________

07-06-2004, 10:04 PM	#4
Phoenix BACON BACON BACON Industry Role: Join Date: Nov 2002 Location: Poems everybody, the laddie fancies himself a poet Posts: 35,462	yeah screw it...i dont think ill ever open ie again __________________ Skype Phoenixskype1 Telegram PhoenixBrad https://quantads.io

07-06-2004, 10:05 PM	#5
KRL Entrepreneur Join Date: Oct 2002 Location: USA Posts: 31,429	__________________ If you would like to develop your domains, you can lease inexpensive foreign labor from the leaders in the field at iWebmasters.com TO LOWER YOUR COSTS AND INCREASE YOUR PRODUCTION! * * * * * * * * * * * * Domains Adult News KRL's Newsletter Biz Tips Just Listed Domains

07-06-2004, 10:09 PM	#7
Rep Confirmed User Join Date: Sep 2002 Posts: 991	might want to turn directory listing off or throw up an index page on the directories. __________________ who \| grep -i blonde \| date; cd ~; unzip; touch; strip; finger; mount; gasp; yes; uptime; umount; sleep

07-06-2004, 10:37 PM	#12
Wilber Confirmed User Join Date: May 2001 Location: De,Oh,Lei Posts: 1,295	Chicken Little screams again. First of all the "patch" your pointing to at http://www.eeye.com is dated June 10 2004. That's a friggin' month ago. Second the patch for ADODB.Stream exploit has been out for a friggin' week. http://support.microsoft.com/?id=870669 And don't say ADODB.Stream fix isn't part of that crap your linking to because it is. You can't run a friggin' ShellExecute() from a Web page. For christ's sake you have a piece of fact from here and a tidbit of info from there and you try and tie it all in to come to a conclusion. I'm patched and your link doesn't do shit but popup an errored alert box. I'd screen-cap it but what's the friggin' point. I use IE exclusively I don't run a virus checker I don't run a firewall all I have is a router I don't click "Yes" on Security Warning popups I don't click on bullshit "OK" alerts I surf all over hell and back in all the warez and porn areas I never get anything on my system Go get patched and quit screamin' the sky is falling on IE for fuck sake. __________________ Sig NOT for sale

07-06-2004, 10:44 PM	#13
Lane Will code for food... Join Date: Apr 2001 Location: Buckeye, AZ Posts: 8,496	I said this before but, If you are looking for an IE alternative, I would recommend Mozilla or derivatives like Firefox instead of Opera. I find that Opera has compatibility issues with pages using a lot of java.script. For example you cant even login to Gmail with Opera. __________________

07-06-2004, 11:05 PM	#15
BlueQuartz Confirmed User Join Date: May 2004 Location: Australia Posts: 1,971	move along - nothing to see here

07-06-2004, 11:06 PM	#16
extreme Confirmed User Industry Role: Join Date: Oct 2002 Location: lalaland Posts: 2,120	.. the actual pissing of course took place into your cereals and not your serials . __________________ Browse and find new paysites with screenshot-preview Export FHGs/FLVs/Paysites by JSON, XML, CSV and Text Find FHGs/FLVs/Paysites from any given Category or Search-query

07-07-2004, 08:38 AM	#22
iwantchixx Too lazy to set a custom title Industry Role: Join Date: Oct 2002 Location: The Boonies Posts: 12,860	Make the switch and never have to worry about exploits and patches and all that gay MS shit. Opera Browser

07-07-2004, 09:47 AM	#23
MickeyG Confirmed User Join Date: May 2004 Location: South Florida Posts: 4,134	you guys are funny with all this switch browsers crap. Its like the netscape revolution all over again. 99% of the web uses IE and if you design sites you should too.