Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)

From: Chris Evans <scarybeasts () gmail com>
Date: Thu, 28 May 2009 11:00:29 -0700
OMG OMG! I will wish I was never born!

On Thu, May 28, 2009 at 12:01 AM, OTB <ownthebox () cipherpunx org> wrote:


Sure, you say that now, but wait until I maliciously entice you to click
on my BROWSER-HANGING SVG OF DEATH!!!!!!!

Chris Evans wrote:

On Wed, May 27, 2009 at 12:03 PM, Thierry Zoller <Thierry () zoller lu
<mailto:Thierry () zoller lu>> wrote:

    Hi Michal,

    Yep, positive, welcome to the world of rediscovery, sad that the
    bugs seems
    to  been  known  since  2007. Speak about Mozilla being the fastest

to

    patch. Ticket has now been marked as duplicate of that one.


I'm a security guy and I'm comfortable browsing the evil web with this
bug present in my browser. IMHO, Mozilla can be cut some slack here.

Cheers
Chris







    --
    http://blog.zoller.lu
    Thierry Zoller

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.grok.org.uk/full-disclosure-charter.html
    Hosted and sponsored by Secunia - http://secunia.com/


------------------------------------------------------------------------

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/




_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: