[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] happy new year.
- To: <full-disclosure@xxxxxxxxxxxxxxxxx>
- Subject: Re: [Full-disclosure] happy new year.
- From: "Cassidy Macfarlane" <cmacfarlane@xxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 21 Dec 2005 12:38:44 -0000
Yup, OK, it is, but you can still colour me surprised that this is a
'windows' DoS, as opposed to an IE issue.
I obviously missed that info when this was found.
As it is a kernel/memory issue, as opposed to a jpg/img/processing bug,
does this not mean ANY windows app is vuln to an oversize-referenced
img?
So a single HTML mail could effectively re-boot a windoze PC(?)....
Wonder if there's a bit of 'elbow room' in this crash buffer......
-----Original Message-----
From: full-disclosure-bounces@xxxxxxxxxxxxxxxxx
[mailto:full-disclosure-bounces@xxxxxxxxxxxxxxxxx] On Behalf Of
Wernfried Haas
Sent: 21 December 2005 12:00
To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] happy new year.
Am i missing something, but isn't this the same thing we already
had a while ago? See the attached pdf in
http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2005-05/0069.html
On Wed, Dec 21, 2005 at 09:35:01AM -0000, Cassidy Macfarlane wrote:
> MOZILLA 1.7 (!)
Also killed my mozilla on Linux (not immedeately, had to scroll around
a bit to make it crash).
cheers,
Wernfried
--
Wernfried Haas (amne) - amne at gentoo dot org
Gentoo Forums: http://forums.gentoo.org
IRC: #gentoo-forums on freenode - email: forum-mods at gentoo dot org
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/