Bugtraq: Re: Fire fox dos exploit

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Fire fox dos exploit

From: Aaron Hopkins <lists () die net>
Date: Thu, 1 Jun 2006 13:00:55 -0700 (PDT)

On Wed, 31 May 2006, Josh Zlatin-Amishav wrote:

Can you give us some more details, like versions and platforms affected? Iwas unable to recreate this flaw using firefox 1.5.dfsg+1.5.0 on Debianunstable.


The word-wrapping of his mail client broke the exploit.  If you clean that
up by only putting line-breaks between tags, it seems to work.  Try:

        http://static.die.net/firefox-marquee-dos/

This breaks Firefox/1.5.0.3 on Ubuntu 5.0.4 and WinXP, and Firefox/1.5.0.2
on Ubuntu 5.1.0.  The browser freezes and on Linux the window stops
repainting.

                                    -- Aaron

By Date By Thread

Current thread:

Re: Fire fox dos exploit, (continued)
- Re: Fire fox dos exploit Ronald van den Blink (Jun 04)
- Re: Fire fox dos exploit Yannick von Arx (Jun 04)
- Re: Re: Fire fox dos exploit vincenzo . ampolo (Jun 04)
- Re: Fire fox dos exploit Phil Trainor (Jun 04)
- Re: Fire fox dos exploit Ronald van den Blink (Jun 04)
- Re: Fire fox dos exploit Aaron Hopkins (Jun 04)
- Re: Re: Fire fox dos exploit al4321 (Jun 07)