Login | Register For Free | Help	Search this list this category for: (Advanced)

Mailing List Archive: Full Disclosure: Full-Disclosure Some 0day Pocs   Index | Next | Previous | View Flat

muts at offensive-security Apr 9, 2007, 3:12 AM Views: 1885 Permalink Some 0day Pocs # Mati Aharoni # muts [.@.] offensive-security.com <mailto:muts[at]offensive-security.com> # http://www.offensive-security.com My 7 line python fuzzer found several file format bugs in 3 hours. Quite alarming. No deep analysis was done, I leave that to the community. These are some of the results: file789-1.doc - Unspecified Overflow in word 2007 - Crash in wwlib.dll - Code execution is not trivial. file798-1.doc - Word 2007 CPU exhaustion DOS - CPU shoots up to 100 %. file613-1.doc - Word 2007 CPU exhaustion DOS + ding - CPU shoots up to 100 %, and windows goes "ding!" evil.hlp - Heap overflow in Windows HLP files - Funky heap overflow crash, more than meets the eye (does this sound familiar to anyone?) These files can be found at http://www.offensive-security.com/0day/0day.tar.gz Be safe, Muts

Subject User Time Some 0day Pocs muts at offensive-security Apr 9, 2007, 3:12 AM

Index | Next | Previous | View Flat   Full Disclosure     Full-Disclosure

Interested in having your list archived? Contact lists@gossamer-threads.com
 

Web Applications & Managed Hosting Powered by Gossamer Threads Inc.