Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: happy new year.

From: "Cassidy Macfarlane" <cmacfarlane () Drummond-Miller co uk>
Date: Wed, 21 Dec 2005 12:38:44 -0000
Yup, OK, it is, but you can still colour me surprised that this is a
'windows' DoS, as opposed to an IE issue.

I obviously missed that info when this was found.

As it is a kernel/memory issue, as opposed to a jpg/img/processing bug,
does this not mean ANY windows app is vuln to an oversize-referenced
img?

So a single HTML mail could effectively re-boot a windoze PC(?)....
Wonder if there's a bit of 'elbow room' in this crash buffer......

-----Original Message-----
From: full-disclosure-bounces () lists grok org uk
[mailto:full-disclosure-bounces () lists grok org uk] On Behalf Of
Wernfried Haas
Sent: 21 December 2005 12:00
To: full-disclosure () lists grok org uk
Subject: Re: [Full-disclosure] happy new year.


Am i missing something, but isn't this the same thing we already
had a while ago? See the attached pdf in
http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2005-05/0069.html

On Wed, Dec 21, 2005 at 09:35:01AM -0000, Cassidy Macfarlane wrote:

MOZILLA 1.7 (!)

Also killed my mozilla on Linux (not immedeately, had to scroll around
a bit to make it crash).

cheers,
        Wernfried

-- 
Wernfried Haas (amne) - amne at gentoo dot org
Gentoo Forums: http://forums.gentoo.org
IRC: #gentoo-forums on freenode - email: forum-mods at gentoo dot org
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: