Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Browser Bug of the Month Club - SANS Internet Storm Center SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Browser Bug of the Month Club
HD Moore published a blog entry on Sunday stating that he plans to issue a new browser bug each day through the month of July.  Two are already out and it looks like one of them is pretty nasty.  FrSIRT has some analysis available.  Here are the links:

HD Moore's original comments

***CAUTION*** the following links point to pages listing the actual exploit code.  There are "demonstration" links on these pages that if followed might cause your computer to lock up or crash.  Click with care!
Bug #1
Bug #2

These first two appear to be unpatched Windows Internet Explorer issues.  We'll post more comments as this develops.

Marcus Sachs
Director, SANS Internet Storm Center


301 Posts
ISC Handler
Jul 3rd 2006

Sign Up for Free or Log In to start participating in the conversation!