Microsoft Internet Explorer 6/7/8 - DoS Vulnerability (Shockwave Flash Object)

EDB-ID: 11182 CVE: 2010-0187 OSVDB-ID: 62370
Verified: Author: Mert SARICA Published: 2010-01-18
Download Exploit: Source Raw Download Vulnerable App: N/A
# Version: 6/7/8
# Tested on: Windows XP SP3 English & Windows 7
# CVE :
# Code:  https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/11182.tar.gz (ie_crash.tar.gz)

Description: Modified 1360. byte to 44, 1361. to 43, 1362. 42, 1363.
byte to 41 of a sample swf file, ran it and crash occurred.

Screenshots:

Internet Explorer 6 - XP SP3 - http://www.mertsarica.com/images/ie6_xp_sp3_3.jpg
Internet Explorer 7 - XP SP3 - http://www.mertsarica.com/images/ie7_xp_sp3_1.jpg
Internet Explorer 8 - Windows 7 - http://www.mertsarica.com/images/ie8_win7.jpg