oss-sec mailing list archives
Re: CVE request: firefox 2.0.14 ( Crash in JavaScript garbage collector)
From: Josh Bressers <bressers () redhat com>
Date: Thu, 17 Apr 2008 07:10:38 -0400
And again, are pure browser crashers considered security relevant? I'd do so, as e.g. placing a crashing gif on e.g. some popular wiki could cause much trouble: http://www.securityfocus.com/bid/27243 (I think it's still unfixed)
As the advisory states:
We have no demonstration that this particular crash is exploitable but
are issuing this advisory because some crashes of this type have been
shown to be exploitable in the past.
It is almost certain that given how Firefox is crashing, someone with the
time and know how could leverage this to execute arbitrary code.
--
JB
Current thread:
- CVE request: firefox 2.0.14 ( Crash in JavaScript garbage collector) Hanno Böck (Apr 17)
- Re: CVE request: firefox 2.0.14 ( Crash in JavaScript garbage collector) Tomas Hoger (Apr 17)
- Re: CVE request: firefox 2.0.14 ( Crash in JavaScript garbage collector) Josh Bressers (Apr 17)
- Re: CVE request: firefox 2.0.14 ( Crash in JavaScript garbage collector) Steven M. Christey (Apr 17)
- Re: CVE request: firefox 2.0.14 ( Crash in JavaScript garbage collector) Hanno Böck (Apr 17)
- Re: CVE request: firefox 2.0.14 ( Crash in JavaScript garbage collector) Steven M. Christey (Apr 17)
- Re: CVE request: firefox 2.0.14 ( Crash in JavaScript garbage collector) Hanno Böck (Apr 18)
- Re: CVE request: firefox 2.0.14 ( Crash in JavaScript garbage collector) Hanno Böck (Apr 17)