[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] Re: Remote overflow in MSIE script action handlers (mshtml.dll)
- To: "Michal Zalewski" <lcamtuf@xxxxxxxxxxxx>
- Subject: Re: [Full-disclosure] Re: Remote overflow in MSIE script action handlers (mshtml.dll)
- From: poo <skodliv@xxxxxxxxx>
- Date: Sat, 18 Mar 2006 02:31:37 +0100
of course you have!!!
i also know how to convert a cow into bacon !!!1111
On 3/17/06, Michal Zalewski <lcamtuf@xxxxxxxxxxxx> wrote:
>
> On Thu, 16 Mar 2006, Michal Zalewski wrote:
>
> > This might not come as a surprise, but there appears to be a *very*
> > interesting and apparently very much exploitable overflow in Microsoft
> > Internet Explorer (mshtml.dll).
>
> I'd like to make a self-serving statement in response to dozens of people
> who pointed out that this month, iDefense pays $10,000 per any
> vulnerability that would result in a Microsoft security advisory rated
> "critical"...
>
> YES, I HAVE THIS KNOWLEDGE.
>
> I simply do not subscribe to that way of making money. It might be that
> I'm insane or dumb, but it feels good.
>
> Regards,
> /mz
> http://lcamtuf.coredump.cx/
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
--
smile tomorrow will be worse
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/