OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: Potential IE5 DoS bug?
From: McNamara, Robert (RMcNamaraTRADEWEAVE.COM)
Date: Fri Mar 10 2000 - 15:50:00 CST


Dummie system running SP6a has a 1% CPU usage when executing your code.

-----Original Message-----
From: MJE [mailto:markNTSHOP.NET]
Sent: Friday, March 10, 2000 1:34 PM
To: win2ksecadviceLISTSERV.NTSECURITY.NET
Subject: Potential IE5 DoS bug?

I recv'd an interesting piece of code this week that alleges to crash IE 5.
I ran this code on a bare test system (NT 4.0 Wkstn with SP5 and patches)
and found that the code maximized CPU usage at 100%. CPU usage remained
max'd until I stopped the IEXPLORE.EXE process associated with the browser.
Browser version was 5.00.2314.1003 with 128-bit SSL installed

I sent this code to Microsoft, where the company promptly responded that
they cannot reproduce the problem. So I'm left to run tests in the field.

If you all could test this code and report your findings to me ONLY IF IT
ADVERSELY AFFECTS YOUR SYSTEM then I would truly appreciate it.

Thanks.
MJE - markntsecurity.net <mailto:markntsecurity.net>

_____________________________________________________________________
** TO UNSUBSCRIBE, send the command "UNSUBSCRIBE win2ksecadvice"
** FOR A WEEKLY DIGEST, send the command "SET win2ksecadvice DIGEST"
SEND ALL COMMANDS TO: listservlistserv.ntsecurity.net