AW: [Full-Disclosure] New Microsoft Internet Explorer mshtml.dll Denial of Service?
pel at adv.magwien.gv.at
Tue Sep 2 16:20:26 BST 2003
This seems to be caused by the 1x1 image http://www.galad.com/frame/e1x1.gif used within the page. If I block this URL the IE stops crashing with that page.
> > Its a mail client issue; doesn't happen if you click on
> > a link from Internet Explorer.
> No, I am very sure that this happens also, if you follow the
> link inside
> a web page only (without an involving mail client).
> So go to http://www.counterpane.com/crypto-gram.html , scroll down and
> click the link that says "Holger Hasselbach has translated several
> issues of Crypto-Gram into German [...]". The error occurs as
> in my original posting.
> > Your mail headers don't exactly give away your own mail client.
> > What would it be?
> Microsoft Outlook 2002 SP2 on Windows XP Professional
> Marc Ruef
> -----BEGIN PGP SIGNATURE-----
> Version: PGP 8.0
> -----END PGP SIGNATURE-----
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
Full-Disclosure is hosted and sponsored by Secunia.