Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
|
|
|
|
|
|
|
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
|
|
|
|
Become a Partner and License Our Database or Notification Service
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Avant Browser Crashes When Loading a Long URL
|
|
SecurityTracker Alert ID: 1007553
|
|
CVE Reference: GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: Aug 22 2003
|
Impact: Denial of service via network
|
Exploit Included: Yes
|
Version(s): 8.02
|
Description: A vulnerability was reported in the Avant Browser. A remote user can create HTML that will cause the browser to crash.
ZUD Security Team reported that a remote user can create a URL that, when loaded by the target user's browser, will cause the browser to crash. A demonstration exploit is provided:
http://AAAAAAA[more 780 chars]
|
Impact: A remote user can create HTML that will cause the target user's browser to crash.
|
Solution: No solution was available at the time of this entry.
|
Vendor URL: avantbrowser.com/ (Links to External Site)
|
Cause: Boundary error
|
Underlying OS: Windows (Any)
|
Reported By: nimber <nimber@mail.ru>
|
Message History:
None.
|
Source Message Contents
|
Date: Fri, 22 Aug 2003 01:48:52 +0400
From: =?koi8-r?Q?=22?=nimber=?koi8-r?Q?=22=20?= <nimber@mail.ru>
Subject: Buffer overflow in Avant Browser 8.02
|
______________________________________________________________
/###############################################################\
# ZUD SECURITY TEAM PRESENT # #:
################################ #:
# bug found by nimber # (0_0(0_o)0_o) #:
# Email : nimber@designer.ru # #:
# Site: www.zudteam.org # www.zudteam.org #:
# HomePage: www.nimber.plux.ru # #:
################################################################:
======================\\ :
Advisory Information: //----------------------------------------o
=====================// :
Application : Avant Browser :
Date : 21.08.2003 :
Vendor Homepage : http://avantbrowser.com :
Versions : 8.02 (maybe older) :
Platforms : all Win. :
Severity : High :
----------------------------------------------------------------o
Powerful Browser on the base IE. 1999 - 2003. :
Supports: Built-in Pop-up Stopper, :
Flash Animation Filter, Safe Recovery,Scins, :
Built-in Google Search Engine. :
======================\\---------------------------------------/
Overview: // Buffer overflow in Avant Browser 8.02/
=====================//______________________________________/
Local: yes |
Remote: yes |
1) Crash browser by sending long http request. o
Exaple: |
http://AAAAAAA[more 780 chars] |
2) Or at opening of long link. |
Exaple: |
<a href="http://AAA[more 780 chars]">aaa</a> |
After start Browser will not possible. |
(after recurrent installation even!!!) |
When starting you see reporting on mistakes: |
"Access violation at address 77D6318 in module 'USER32.dll' |
Write od address 011C1000" |
And else: |
"avant.exe has encountered a problem and needs to close." |
"Exception EReadError in module avant.exe at 00021AD3. |
Error reading cbAddress.Left: Access volation at address |
0012D798. Write of address 00000000." |
Overflow Buffer occurs in an effort Browser copy a visit |
reference in Buffer exchange. |
____________________________________________________________o
Path: Can be will be corrected in following versions. |
____________________________________________________________|
Gr33tZ: תבעבתב, ZeT,euronymous, subj, Zud Team, void.ru, |
RusH Team,m00 security,eXploit.ru,LWTeam, F0K Project, |
Free-Crew. |
___________________________________________________________//
Thank You.
--------------
For contact:
e-mail: nimber@mail.ru
icq: 132614
web-site: www.zudteam.org
|
|
Go to the Top of This SecurityTracker Archive Page
|
