Exploitation Summary
EIP tracks 4 public exploits for CVE-2009-0076. PoCs published by Ahmed Obied, David Kennedy (ReL1K), Abysssec.
AI-analyzed exploit summary This exploit targets CVE-2009-0076, a use-after-free vulnerability in Internet Explorer 7, by spraying the heap with shellcode and triggering the bug via JavaScript. It delivers a calc.exe payload via a malicious HTTP server.
Description
Microsoft Internet Explorer 7, when XHTML strict mode is used, allows remote attackers to execute arbitrary code via the zoom style directive in conjunction with unspecified other directives in a malformed Cascading Style Sheets (CSS) stylesheet in a crafted HTML document, aka "CSS Memory Corruption Vulnerability."
Exploits (4)
This exploit targets CVE-2009-0076, a use-after-free vulnerability in Internet Explorer 7, by spraying the heap with shellcode and triggering the bug via JavaScript. It delivers a calc.exe payload via a malicious HTTP server.
This exploit targets a memory corruption vulnerability in Microsoft Internet Explorer 7 (CVE-2009-0076) by serving a malicious HTML page with JavaScript that triggers a buffer overflow, leading to remote code execution via a bind shell on port 5500.
This exploit targets a memory corruption vulnerability in Internet Explorer 7 (CVE-2009-0076) via JavaScript heap spraying. It uses a bind shell shellcode to achieve remote code execution on vulnerable systems.
This is a heap spray exploit targeting CVE-2009-0075, a vulnerability in Microsoft Internet Explorer's handling of HTML objects. The exploit uses JavaScript to spray the heap with shellcode and trigger the vulnerability via the 'click' method on a cloned 'tbody' element, leading to arbitrary code execution (spawning calc.exe).