Full Disclosure mailing list archives

Re: Firefox <= 2.0 crash

From: Matthew Flaschen <matthew.flaschen () gatech edu>
Date: Mon, 30 Oct 2006 11:38:06 -0500

Nothing happens when I load it in Firefox 2.0 on Windows XP.

Matthew Flaschen

Carlos Barros wrote:

-------------------------------------------------
Gotfault Security - Advisory #05 - 27/10/06
-------------------------------------------------
Software   : Firefox
Homepage   : http://www.mozilla.com/
Vulnerable : 1.5.0.7 and below, 2.0
Risk       : Moderate
Impact     : Denial of Services (Code execution not verified)
-------------------------------------------------
DESCRIPTION
-------------------------------------------------
Mozilla Firefox is prone to a D.O.S within its javascript Range object. In a
special condition, a NULL Pointer Deference occur and Firefox crashes.

From DOM MDC:


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Firefox <= 2.0 crash Carlos Barros (Oct 30)
- Re: Firefox <= 2.0 crash Matthew Flaschen (Oct 30)
  - Re: Firefox <= 2.0 crash Ozan Ozkara (Oct 30)
    - Re: Firefox <= 2.0 crash Mariusz Kozlowski (Oct 30)
    - Re: Firefox <= 2.0 crash Matthew Flaschen (Oct 30)
    - Re: Firefox <= 2.0 crash tommy (Oct 30)
    - Re: Firefox <= 2.0 crash Matthew Flaschen (Oct 30)
- Re: Firefox <= 2.0 crash Mihai Dontu (Oct 30)
- Re: Firefox <= 2.0 crash Sven Strittmatter (Oct 31)
- Re: Firefox <= 2.0 crash Lubomir Kundrak (Oct 31)