Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Firefox 0.92 DoS via TinyBMP
From: "Philip" <pid4x () dodo com au>
Date: Mon, 12 Jul 2004 23:27:28 +1000

It caused the same effect on fully patched XP SP1 (according to
windowsupdate.com) with  IE6.0.2800.1106.xpsp2.030422-1633 when using MyIE
(virutal memory low warning) untill i closed the tab, when opening the link
in just IE page file got to over 900mb before i ended IE's task.

Anyone have any clues as to why my machine seems vunerable to it?

----- Original Message ----- 
From: "thE_iNviNciblE" <the_invincible () gmx de>
To: <Full-Disclosure () lists netsys com>
Sent: Monday, July 12, 2004 9:23 PM
Subject: [Full-disclosure] Firefox 0.92 DoS via TinyBMP


Hi,

there is a security vulnerability in Firebox 0.92 (latest Version)

http://www.4rman.com/exploits/tinybmp.htm

this link causes that your virutal memory will be rise up 1,2 GB used
Memory...

maybe Thunderbird 0.72 is also vulnerable via HTML.

credits to: StupidWhiteMan

-- 
   Best Regard thE_iNviNciblE
   ---------------------------
   Wissen ist Macht

Freie Meinung: http://www.your-mind-is-free.de.vu
IT-Security  : http://www.kid2elite.de.vu
IT-Forum     : http://www.security-focus.de.vu

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault