[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

x90c WOFF Firefox 1day exploit

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: x90c WOFF Firefox 1day exploit
From: geinblues@xxxxxxxxx
Date: Sat, 17 Aug 2013 09:51:02 GMT

Hi Forks!

I share my WOFF 1day exploit.

* attachment:
http://www.x90c.org/exploits/x90c_WOFF_exploit.tgz

(dep bypass)

* vulnerability:
    CVE-2010-1028 WOFF Heap Corruption due to Integer Overflow

* affacted Products:
    - Mozilla Firefox 3.6 ( Gecko 1.9.2 )
    - Mozilla Firefox 3.6 Beta1, 3, 4, 5 ( Beta2 ko not released )
    - Mozilla Firefox 3.6 RC1, RC2

Prev by Date: MS Excel 2002/2003 CRN record 0day PoC
Next by Date: Defense in depth -- the Microsoft way (part 7): executable files in data directories
Previous by thread: MS Excel 2002/2003 CRN record 0day PoC
Next by thread: Defense in depth -- the Microsoft way (part 7): executable files in data directories
Index(es):
- Date
- Thread