Full Disclosure: Firefox 2.0.0.3 Out-of-bounds memory access via specialy crafted html file

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Firefox 2.0.0.3 Out-of-bounds memory access via specialy crafted html file

From: "carl hardwick" <hardwick.carl () gmail com>
Date: Tue, 1 May 2007 09:26:21 +0200

Product: Firefox 2.0.0.3
Description: Out-of-bounds memory access via specialy crafted html file
Type: Remote

Vulnerability can be exploited by using a large value in a href tag to
create an out-of-bounds memory access.

Proof Of Concept exploit:
http://www.critical.lt/research/opera_die_happy.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Firefox 2.0.0.3 Out-of-bounds memory access via specialy crafted html file carl hardwick (May 01)
- Re: Firefox 2.0.0.3 Out-of-bounds memory access viaspecialy crafted html file Nikolay Kichukov (May 01)
- Re: Firefox 2.0.0.3 Out-of-bounds memory access via specialy crafted html file Robert Wesley McGrew (May 01)
- Re: Firefox 2.0.0.3 Out-of-bounds memory access via specialy crafted html file Ismail Dönmez (May 01)
- Re: Firefox 2.0.0.3 Out-of-bounds memory access via specialy crafted html file Mihai Donțu (May 01)
  - Re: Firefox 2.0.0.3 Out-of-bounds memory access via specialy crafted html file Alexander Bierbaumer (May 01)