[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re[2]: [TZO-27-2009] Firefox Denial of Service (Keygen)

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re[2]: [TZO-27-2009] Firefox Denial of Service (Keygen)
From: Thierry Zoller <Thierry@xxxxxxxxx>
Date: Thu, 28 May 2009 19:48:21 +0200

Hi Tavis,

The  bug title says Denial of service, not information leak, or crypto
leak or whatever.

That's it, one might want to write a paper how,  by  indirect
means  memory  leaks  can  wreak  havoc, that's an exercise
I happily leave  to  the  reader. The point was that you
better  analyse  them  instead  of having them sit there a few months.
period, nothing more nothing less.


-- 
http://blog.zoller.lu
Thierry Zoller

References:
- [TZO-27-2009] Firefox Denial of Service (Keygen)
  - From: Thierry Zoller
- Re: [TZO-27-2009] Firefox Denial of Service (Keygen)
  - From: Tavis Ormandy

Prev by Date: Re: Insufficient Authentication vulnerability in Acer notebooks
Next by Date: Re: Insufficient Authentication vulnerability in Acer notebooks
Previous by thread: Re: [TZO-27-2009] Firefox Denial of Service (Keygen)
Next by thread: ZDI-09-021: Apple QuickTime PICT Unspecified Tag Heap Overflow Vulnerability
Index(es):
- Date
- Thread