Stop Microsoft
All Things Microsoft => Microsoft Software => Topic started by: Master of Reality on 24 May 2002, 23:43
-
go to this link (http://file://C:\CON\CON)
If you are using windows and click the link, it should crash your system and make you restart.
If anyone is willing to crash there own windows system, please go there and click on the link on the page to test it out.
(FIX YOur link... accidently tryed to do somthing an screwed it.......)
[ May 25, 2002: Message edited by: X11 ]
[ May 25, 2002: Message edited by: Master of Reality ]
-
I'll give it a go later.
I don't feel like restarting Windows for a 10th time today.
-
Doesn't affect Win3.x? Yet crashes 9x and ME.
Hmm.. Windows gets worse as new versions are released, and now we have some proof! maybe not, since XP insn't affected.
But I have run into a site that if veiwed in IE on Windows NT 4, 2k or XP, will crash your computer. I can't remember the address though, but I do know that it isn't supposed to do that.
-
no it doesn't work in winME.
and the reason it doesn't is that it will only work with certain versions of win98 and win95 and even then, only when you are using internet explorer. netscape and opera and so on will not crash the system in this way.
-
Well, I've tried this on my Win2k machine, but it doesn't seem to work. Propably works with Win 95 and 98.
-
I just put an image tag with it in The Abyss. (http://abyss.servebeer.com)
-
Windows XP here, didn't crash.
Windows 98 downstairs with all current patches, didn't crash.
-
that's because there's a fix in one of the M$ updates from 2000. Still, how many people install all the updates? i try not to, i installed one update once and it fucked up my cdrw drivers, requiring a clean reinstall. I don't need those fucking updates anyway, it's just windows anyway, who cares? i'll need to reinstall it sometime anyway...
-
Here winME with IE5... didn't work.
-
Holy shit!!!! WinXP with service pack 27 and IE 7.943 here. It just crashed my computer, then reformated my hard drive and installed RedHat 7.2!!! Strange thing is it hasn't crashed since, and I don't get anymore lookout viruses...
-
i think the link is supposed to be like this:
file://C:/CON/CON
too bad we can't make the proper link on the forums :(
[ June 10, 2002: Message edited by: Chooco ]
-
All you have to do is create a web page on a free site that contains nothing more than a page that automatically redirects to the crash link. Then link that page in your message.
In fact create a PHP file on your web server that contains only this one line:
Call it "crash.php" (or whatever you like). Then just send a hyperlink in your message in this forum and it will crash susceptible windows machines. I just tried it and it crashed my Win98 machine...
Note: for the above to work you have to obviously be using a PHP capable web server. You can also use other methods of redirecting, like JavaScript (I turn JavaScript off by default so you wouldn't get me even if I did use Windows to surf the net, this PHP script will work even with JavaScript turned off). You can also use an HTTP-EQUIV statement. Search the web if you don't know how.
Of course this will not crash a Linux browser. This is what I get when I try to open the page with Konqueror:
[ June 10, 2002: Message edited by: VoidMain ]
-
http://shawnserver.dhs.org/junk/crash.php (http://shawnserver.dhs.org/junk/crash.php)
there you go my good man (http://smile.gif)
give this error for some reason:
Warning: Cannot add header information - headers already sent by (output started at C:\program files\apache\realdocs\junk\crash.php:10) in C:\program files\apache\realdocs\junk\crash.php on line 10
[ June 10, 2002: Message edited by: Chooco ]
-
chooco, you can make the link on the forums, here it is:
(http://file:C:\CON\CON)
I think that's the right way, ask x11...
[ June 10, 2002: Message edited by: Calum ]
-
so if i put that screwed up link as an IMAGE it will crash all Windows computer which connect to my site? beauty!
i put it on my webpage, check it out:
http://shawnserver.dhs.org (http://shawnserver.dhs.org)
it's that missing picture at the bottom
[ June 10, 2002: Message edited by: Chooco ]
-
yep, this will only work on win85, win98 and win98se, and even then it will only work when people use IE. Also, they can download a patch from Microsoft (which was made available in 2000, wow that was quick!) which will clear up the bug even with win9x and IE. So don't count on getting many people with it, except people who are not too bothered about using the latest kit.
If you find out a similar exploit for the win2000/XP(NT) setups, please. please do post it here...
If you are putting it on yr own site, use this html: <img src=C:\Con\Con> rather than putting the "file:" at the start. That's just a way of getting around the BBCode restrictions.
[ June 10, 2002: Message edited by: Calum ]
-
quote:
Originally posted by Chooco:
http://shawnserver.dhs.org/junk/crash.php (http://shawnserver.dhs.org/junk/crash.php)
there you go my good man (http://smile.gif)
give this error for some reason:
Warning: Cannot add header information - headers already sent by (output started at C:\program files\apache\realdocs\junk\crash.php:10) in C:\program files\apache\realdocs\junk\crash.php on line 10
[ June 10, 2002: Message edited by: Chooco ]
Line 10? Looks like you put this on a Winblows machine. Put it on a real server running Apache/PHP and it will work.
-
wow d00dz, this is really great.
So, all you have to do is make someone click the link, or if you'd put it in an image, it'd crash immediately?
Just one thing : :D :D
Correction: Two things: The second is:
Does it needs to be \CON\CON ? Can it also be something else?
[ June 10, 2002: Message edited by: -=f00bar=- ]
-
CON is a special device name (for "CONSOLE" or "SCREEN") in DOS so I would guess it has to be CON. Has anyone tried any of the other device names like PRN, LPT1, COM1, etc? If I get 'nuf energy up to fire up my Win98 VMware session I'll give it a shot.
-
there's actually another topic about this same thing (http://forum.fuckmicrosoft.com/cgi-bin/ultimatebb.cgi?ubb=get_topic&f=2&t=000189) and on it I posted this link, (http://www.securax.org/pers/scx-sa-01.txt) which should explain the situation fully.
-
Ahhh, that answers that question. Thanks Calum!
-
quote:
Line 10? Looks like you put this on a Winblows machine. Put it on a real server running Apache/PHP and it will work.
dude that fucking is Apache 1.32 with PHP4 and it DOES NOT WORK
-
Dude, you won't find "C:\Program Files\*" on a "real" server. All I can say is it works just fine on a "real" server (*NIX) running Apache/PHP. You probably have more than just one line in your file, like maybe \r\n terminated instead of just \n terminated line because of the DOS line termination which plays hell on headers. Also have this problem with IIS and Perl. Put it on a *NIX server and it will work fine.
[EDIT] If your operating system of choice is Linux as your profile states what the hell are you running Apache on an M$ machine for? I still can't figure out why anyone in their right mind would do such a thing.
[ June 11, 2002: Message edited by: VoidMain ]