Elazar Broad posted the following on the Full Disclosure mailing list around 4 hours ago.
The AOL YGP Picture Editor Control (AIM PicEditor Control) version 9.5.1.8 suffers from multiple exploitable buffer overflows in various properties. This object is marked safe for scripting. I have not tested other versions.
-----------------------
PoC was also included in his message but was not posted here...
UPDATE (12/27/07) - According to a post by Elazar Broad several hours ago, this issue has been found to NOT be exploitable as a BoF. This was determined after analysis by Carsten Eiram @ Secunia. So it looks like this is just a DoS.
No comments:
Post a Comment