DoS bug verified on FFox 1.5.0.4 under Windows XP SP2.
Dnia 05-06-2006, pon o godzinie 09:19 +0530, Sanjay Rawat napisaĆ(a):
> I have seen that the exploit also freezes Eudora 6.2.1.2. I was trying to
> open the original mail in Eudora mail client and whenever I clicked on the
> the mail , Eudora stopped responding anymore. I had to restart the
> ap
:
Crashed my FF 1.5.0.3 straight away on a fully patched XP Pro Service Pack 2
Andy
-Original Message-
From: Josh Zlatin-Amishav [mailto:[EMAIL PROTECTED]
Sent: 31 May 2006 16:50
To: [EMAIL PROTECTED]
Cc: bugtraq@securityfocus.com
Subject: Re: Fire fox dos exploit
On Tue, 30 May 2006, [EMAIL
On Wed, 31 May 2006, Josh Zlatin-Amishav wrote:
Can you give us some more details, like versions and platforms affected? I
was unable to recreate this flaw using firefox 1.5.dfsg+1.5.0 on Debian
unstable.
The word-wrapping of his mail client broke the exploit. If you clean that
up by only pu
Oke, we've tested this one (see http://www.securityview.org/firefox-
marquee-bug.html) because at first we weren't able to let FF crash.
The results are on the site, but the bug is well known and it is not
more then an annoying thing
All the credits goes to n00b for making the PoC, but
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I was able to use this proof of concept code with the following results:
With Firefox 1.0.8 (Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.13)
Gecko/20060418 Fedora/1.0.8-1.1.fc4 Firefox/1.0.8)
I was able to cause a resource exhaustion with firefox i
Yep.
I can confirm this for firefox 1.5.0.3 on ubuntu dapper amd64.
Filling a bug report
Under Apple Mac OS X 10.4.6 (PPC) with Firefox 1.5.0.3 it's
reproducible!
Cheers, Yannick von Arx
Am 31.05.2006 um 16:50 schrieb Josh Zlatin-Amishav:
On Tue, 30 May 2006, [EMAIL PROTECTED] wrote:
I have found a problem which causes denial of service on fire fox
browser
Can you give us s
I told this guy all ready that it looks like WinXP is the problem.
Mac OS X and Debian (Linux) does not hang!
With regards,
Ronald van den Blink
Securityview.org
On 31 May, 2006, at 16:50, Josh Zlatin-Amishav wrote:
On Tue, 30 May 2006, [EMAIL PROTECTED] wrote:
I have found a problem whic
Crashed my FF 1.5.0.3 straight away on a fully patched XP Pro Service Pack 2
Andy
-Original Message-
From: Josh Zlatin-Amishav [mailto:[EMAIL PROTECTED]
Sent: 31 May 2006 16:50
To: [EMAIL PROTECTED]
Cc: bugtraq@securityfocus.com
Subject: Re: Fire fox dos exploit
On Tue, 30 May 2006
Successfully tested on Firefox 1.5.0.3.
I had to kill my firefox.exe process after half a minute of freezing :-)
On 30 May 2006 12:03:36 -, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
I have found a problem which causes denial of service on fire fox browser
Creadit:to n00b for finding th
Here's the bug on bugzilla:
https://bugzilla.mozilla.org/show_bug.cgi?id=239840
It seems this bug has been around for quite a while...
On Tue, 30 May 2006, [EMAIL PROTECTED] wrote:
I have found a problem which causes denial of service on fire fox browser
Can you give us some more details, like versions and platforms affected? I was unable to
recreate this flaw using firefox 1.5.dfsg+1.5.0 on Debian unstable.
--
- Josh
13 matches
Mail list logo
