On Dec 25, 2007 5:29 PM, Elazar Broad <[EMAIL PROTECTED]> wrote: > The AOL YGP Picture Editor Control(AIM PicEditor Control) version > 9.5.1.8suffers from multiple exploitable buffer overflows in various > properties. > This object is marked safe for scripting. I have not tested other versions. > PoC as follows: >
How does a bunch of 'A's prove something is exploitable?
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/