Full Disclosure mailing list archives
Re: Memory corruption when loading/unloading Adobe objects through EMBED tag in Firefox
From: mrx <mrx () propergander org uk>
Date: Wed, 14 Oct 2009 02:31:16 +0100
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I should have made it clear in my first response to this thread that it is the Foxit Firefox plugin that is vulnerable and not the standalone reader. my bad MrX Rohit Patnaik wrote:
Ah, okay. I do that anyway, because I've had bad experiences with Firefox crashing when displaying embedded PDFs in the past. Sounds like I
should be
okay until Foxit updates its reader. Thanks, Rohit Patnaik On Tue, Oct 13, 2009 at 8:15 PM, mrx <mrx () propergander org uk> wrote: Adobe has fixed this issue http://www.adobe.com/support/security/bulletins/apsb09-15.html And as this bug relates to Firefox rendering embedded COM objects (PDF) inside a browser window. It should be safe to view PDF's inside both Adobe and Foxit readers whilst offline. MrX Rohit Patnaik wrote:Are there any available workarounds that would mitigate thethreat? Isuppose I could just upload all my PDFs to Google Docs in themeantime, butI'm looking for something that I could use while offline... --Rohit Patnaik On Tue, Oct 13, 2009 at 7:35 PM, mrx <mrx () propergander org uk>wrote:No, I installed latest updates prior to testing. They should be aware of this however considering what appear to be striking similarities in the code base between Foxit and Adobe readers, at least as far as shared bugs go. If not they will be aware of this after they read the email Isent them.MrX Rohit Patnaik wrote:Has Foxit released an update for this? --Rohit Patnaik On Tue, Oct 13, 2009 at 6:40 PM, mrx <mrx () propergander org uk>wrote:It would appear that Foxit reader version 3.1.1.0928 is also vulnerable to this memory corruption flaw. Foxit reader was also vulnerable to the JPEG2000/JBIG2decoder bug.Makes me wonder how much code is common to both Adobes andFoxits PDFreaders MrX Berend-Jan Wever wrote:Adobe bulletin: http://www.adobe.com/support/security/bulletins/apsb09-15.html Short description and repro case:http://skypher.com/index.php/2009/10/13/memory-corruption-when-loadingunloading-adobe-objects-through-embed-tag-in-firefox/Cheers, SkyLined <http://skypher.com/index.php/2009/10/13/memory-corruption-when-loadingunloading-adobe-objects-through-embed-tag-in-firefox/Berend-Jan Wever <berendjanwever () gmail com> http://skypher.com/SkyLined----------------------------------------------------------------------_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/----------------------------------------------------------------------_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
----------------------------------------------------------------------
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEVAwUBStUp5LIvn8UFHWSmAQJGBwgAn3ZlC2bLq6PfJPZWK5YhCuRECQhIpgUS tp34qfKay5dyS/t7vpZNEJcd/DVC8rG9yPfqNYeg5qpwyCUrCAsp/+vYQVdTKM4q zntupFr1jyaWHvovhMNZv2rateQh7EzIsCV9NJuD4IC5LD6IRuyg/EpATAUEvd42 Gu5Syx3HyaEF9KFxoU6MHh4o+mVCR4BpJ6p7daLqXsvVZw5F06qqNaNxE3YnjwBe Edv6V7BOOru1BijDhoAE93lXhxTUKeLXtb7S/3/MMFw1zuKVphH0m6a03/qvo9CL v3lS9F4680EOLJTjkRLTQzvXvL76dW3Zkb0SSAUxRjp294LfIN4Qjw== =yfzU -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Memory corruption when loading/unloading Adobe objects through EMBED tag in Firefox Berend-Jan Wever (Oct 13)
- Re: Memory corruption when loading/unloading Adobe objects through EMBED tag in Firefox mrx (Oct 13)
- Re: Memory corruption when loading/unloading Adobe objects through EMBED tag in Firefox Rohit Patnaik (Oct 13)
- Message not available
- Re: Memory corruption when loading/unloading Adobe objects through EMBED tag in Firefox mrx (Oct 13)
- Re: Memory corruption when loading/unloading Adobe objects through EMBED tag in Firefox Rohit Patnaik (Oct 13)
- Re: Memory corruption when loading/unloading Adobe objects through EMBED tag in Firefox mrx (Oct 13)
- Re: Memory corruption when loading/unloading Adobe objects through EMBED tag in Firefox Rohit Patnaik (Oct 13)
- Re: Memory corruption when loading/unloading Adobe objects through EMBED tag in Firefox mrx (Oct 13)
- Re: Memory corruption when loading/unloading Adobe objects through EMBED tag in Firefox mrx (Oct 13)