| New User, Welcome! Login |
Microsoft Internet explorer 8 DLL Hijacking (IESHIMS.DLL)
| From: |
YGN Ethical Hacker Group <lists yehg net> |
| To: |
full-disclosure lists grok org uk, bugtraq securityfocus com, bugs securitytracker com, vuln secunia com, secalert securityreason com, news securiteam com, vuln security nnov ru |
| Cc: |
Peter Van Eeckhoutte <peter ve corelan be> |
| Subject: |
Microsoft Internet explorer 8 DLL Hijacking (IESHIMS.DLL) |
| Date: |
Fri - Sep 03, 2010 09:06 PM |
I found this Microsoft Internet explorer 8 DLL Hijacking at Inject0r db
http://inj3ct0r.com/exploits/13898
This one is a similar variant of IE 7
http://www.exploit-db.com/exploits/2929/
It can be triggered only if attackers can put a IESHIMS.DLL file in
user's desktop.
However, there are some supporting factors that trigger this exploit successful
such as when user's default download location is Desktop
Ref:
http://aviv.raffon.net/2008/05/31/SafariPwnsInternetExplorer.aspx
|
|
|
Copyright © 1995-2012 LinuxRocket.net. All rights reserved.
Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!
