CVE-2010-3971 PoC — Microsoft Internet Explorer CSS内存破坏漏洞

Source

https://github.com/nektra/CVE-2010-3971-hotpatch

Associated Vulnerability

Title:Microsoft Internet Explorer CSS内存破坏漏洞 (CVE-2010-3971)
Description:Use-after-free vulnerability in the CSharedStyleSheet::Notify function in the Cascading Style Sheets (CSS) parser in mshtml.dll, as used in Microsoft Internet Explorer 6 through 8 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a self-referential @import rule in a stylesheet, aka "CSS Memory Corruption Vulnerability."

Description

Do you own security hotfix with Deviare hooking

Readme

CVE-2010-3971-hotpatch
======================

Do you own security hotfix with Deviare.

Original article: [using Deviare to create a temporary zero day patch](http://blog.nektra.com/main/2013/08/07/using-deviare-to-create-a-temporary-zero-day-patch/)

File Snapshot


 [4.0K]  /data/pocs/9d05b43985267ce7d2cca59ecb5ca8327d8f3556
├── [4.0K]  HotPatch_CVE_2010_3971
│   ├── [3.1K]  Form1.cs
│   ├── [2.1K]  Form1.Designer.cs
│   ├── [5.6K]  Form1.resx
│   ├── [5.2K]  HotPatch_CVE_2010_3971.csproj
│   ├── [1.6K]  HotPatch_CVE_2010_3971.sln
│   ├── [ 482]  Program.cs
│   └── [4.0K]  Properties
│       ├── [1.4K]  AssemblyInfo.cs
│       ├── [2.7K]  Resources.Designer.cs
│       ├── [5.4K]  Resources.resx
│       ├── [1.0K]  Settings.Designer.cs
│       └── [ 242]  Settings.settings
└── [ 252]  README.md

2 directories, 12 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!