Exploitation Summary
EIP tracks 1 public exploit for CVE-1999-0989. PoCs published by Jeremy Kothe.
AI-analyzed exploit summary This exploit leverages a buffer overflow in Internet Explorer 5.0's handling of the 'vnd.ms.radio' URL scheme. By crafting a URL with 360+ characters, it overwrites a buffer in MSDXM.OCX, leading to arbitrary code execution. The provided binary payload triggers a MessageBox and enters an infinite loop.
Description
Buffer overflow in Internet Explorer 5 directshow filter (MSDXM.OCX) allows remote attackers to execute commands via the vnd.ms.radio protocol.
Exploits (1)
This exploit leverages a buffer overflow in Internet Explorer 5.0's handling of the 'vnd.ms.radio' URL scheme. By crafting a URL with 360+ characters, it overwrites a buffer in MSDXM.OCX, leading to arbitrary code execution. The provided binary payload triggers a MessageBox and enters an infinite loop.