BetaONE will rise again!
FAQ Members List Calendar Search Today's Posts Mark Forums Read
   


Reply
 
Thread Tools Display Modes
  #1  
Old 4th May 03, 05:32 AM
KingCobra's Avatar
KingCobra KingCobra is offline
Senior Member
  
Join Date: Dec 2001
Location: Illinois
Posts: 2,409
KingCobra is on a distinguished road
Send a message via Yahoo to KingCobra
Quote:
Just recently a piece of code has been making its way round the internet that allows people to open others CD drives by simply getting them to vist a website. Annoying as that was there is another piece of code which isn't even really all that advanced that will crash Internet Explorer with the error "Unhandled exception in iexplore.exe (SHLWAPI.DLL): 0xC0000005: Access Violation". Shockingly this line code is very easy to implement into any HTML.

The bug posted at BugTraq on the 21st of April is now spreading around the internet, so watch out for what URLs you click on from friends and in emails for now. The line of code is literally :

Read More for code and a test page which causes a crash.

---------------
< html>
< form>
< input type crash>
< /form>
< /html>
--------------

According to the post at BugTraq this line of code can also crash Outlook, Frontpage and all other Microsoft software that use shlwapi.dll to render HTML. Although this code is simply amazing it is simply a null pointer overwrite so it is not easily exploitable.

Get more information at BugTraq post.

Code:
http://www.securityfocus.com/archive/1/319360/2003-04-20/2003-04-26/0
Test your internet explorer and other browsers if they crash by clicking here:

Code:
http://www.warp2search.net/crash.htm
__________________
Reply With Quote
  #2  
Old 4th May 03, 07:09 AM
billybob3's Avatar
billybob3 billybob3 is offline
Senior Member
  
Join Date: Apr 2003
Location: Earth
Posts: 577
billybob3
Send a message via AIM to billybob3 Send a message via MSN to billybob3
Yep, crashed my browser. I'd like to know how to open the cdrom drives with a bit of code. That sounds like a great prank.
Reply With Quote
  #3  
Old 4th May 03, 07:27 AM
SlickVic78's Avatar
SlickVic78 SlickVic78 is offline
Senior Member
  
Join Date: Sep 2001
Location: New York, USA
Posts: 515
SlickVic78 is an unknown quantity at this point
The funny thing is that you don't need "crash" within the input tag to have it crash your browser... Pretty major flaw if you ask me

-SlickVic78
__________________
  • Pentium 4 3.20GHz Processor
  • 1 Gig DDR 400MHz RAM
  • 100 Gig 7200 RPM Western Digital HDD
  • 80 Gig 7200 RPM Western Digital HDD
  • Lite-On LTR-52327S CD-RW Burner
  • Lite-On SOHW-1633S DVD Burner
  • ATI Radeon 9700 Pro
  • Sound Blaster Audigy
  • Microsoft Windows XP Pro SP-2
Reply With Quote
  #4  
Old 4th May 03, 07:27 PM
KingCobra's Avatar
KingCobra KingCobra is offline
Senior Member
  
Join Date: Dec 2001
Location: Illinois
Posts: 2,409
KingCobra is on a distinguished road
Send a message via Yahoo to KingCobra
Quote:
Yep, crashed my browser. I'd like to know how to open the cdrom drives with a bit of code. That sounds like a great prank.
There was a link posted on BetaONE about a free cupholder and I used it which did open the CD-Rom drive. I still have the link saved, but will not post it here. Myself and others used it and noticed that it unmounted all your virtual CD-Rom drives. A bug or virus, don't know.
__________________
Reply With Quote
  #5  
Old 4th May 03, 08:17 PM
Hunted's Avatar
Hunted Hunted is offline
Super Moderator
  
Join Date: Jul 2001
Location: Cape Town
Posts: 573
Hunted is on a distinguished road
Send a message via MSN to Hunted
Yep crashed my browser. Very interesting indeed.
__________________

AMD Athlon 64 x2 4800+ - Gigabyte GA-K8NXP-SLI - 2048MB RAM - 160 GB SEAGATE Barracuda SATA HDD - Gigabyte 7900GT 256MB PCI Express GFX - CHENBRO SILVER Gaming Bomb
Reply With Quote
Reply

« Previous Thread | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT +1. The time now is 09:34 PM.
BetaONE - Archive - Top

Design by Vjacheslav Trushkin for phpBBStyles.com.
Powered by vBulletin® Version 3.6.5
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.