Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos network security services platform







Full Disclosure: Re: Mozilla Firefox "Host:" Buffer Overflow

Re: Mozilla Firefox "Host:" Buffer Overflow

From: Heikki Toivonen <heikki_at_osafoundation.org>
Date: Fri, 09 Sep 2005 00:21:07 -0700

Tom Ferris wrote:
> Vendor Status:
> Mozilla was notified, and im guessing they are working on a patch. Who
> knows though?

That seems like a gross mischaracterization, at least by looking at the
Bugzilla bug filed by you which I believe this corresponds to. The bug
was reported two days ago (Sep 6), the first comment came less than an
hour after that, and the first attempted fix was attached less than two
hours after the bug was filed. Further comments explained how it was
proving hard to find what and where was actually going wrong to put in
the right fix. 10 replies total in less than two days. To me it seems
obvious work is being done. 

-- 
  Heikki Toivonen

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Received on Sep 09 2005
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]