[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] Firefox <= 2.0 crash
- To: full-disclosure@xxxxxxxxxxxxxxxxx
- Subject: Re: [Full-disclosure] Firefox <= 2.0 crash
- From: Matthew Flaschen <matthew.flaschen@xxxxxxxxxx>
- Date: Mon, 30 Oct 2006 11:38:06 -0500
Nothing happens when I load it in Firefox 2.0 on Windows XP.
Matthew Flaschen
Carlos Barros wrote:
> -------------------------------------------------
> Gotfault Security - Advisory #05 - 27/10/06
> -------------------------------------------------
> Software : Firefox
> Homepage : http://www.mozilla.com/
> Vulnerable : 1.5.0.7 and below, 2.0
> Risk : Moderate
> Impact : Denial of Services (Code execution not verified)
> -------------------------------------------------
> DESCRIPTION
> -------------------------------------------------
> Mozilla Firefox is prone to a D.O.S within its javascript Range object. In a
> special condition, a NULL Pointer Deference occur and Firefox crashes.
>>From DOM MDC:
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/