Full Disclosure mailing list archives

RE: Firefox 0.92 DoS via TinyBMP

From: "Eric Paynter" <eric () arcticbears com>
Date: Tue, 13 Jul 2004 10:15:18 -0700 (PDT)

On Mon, July 12, 2004 9:25 pm, Sapheriel said:

what baffles me is how easily this problem could be countered. a simple
check of bfsize versus filesize(-header and such) would suffice.


Most vulnerabilities can be countered with something very simple like a
size check, yet developers don't do it. :\

-Eric

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: Firefox 0.92 DoS via TinyBMP, (continued)
- - Re: Firefox 0.92 DoS via TinyBMP William Warren (Jul 12)
- Re: Firefox 0.92 DoS via TinyBMP Ali Campbell (Jul 12)
- Re: Firefox 0.92 DoS via TinyBMP David Huecking (Jul 12)
  - Re: Firefox 0.92 DoS via TinyBMP st3ng4h (Jul 12)
    - Re: Firefox 0.92 DoS via TinyBMP Jordan Cole (stilist) (Jul 12)
    - Re: Firefox 0.92 DoS via TinyBMP Maarten (Jul 12)
    - Re: Firefox 0.92 DoS via TinyBMP Ali Campbell (Jul 12)
    - Re: Firefox 0.92 DoS via TinyBMP st3ng4h (Jul 12)
    - RE: Firefox 0.92 DoS via TinyBMP Sapheriel (Jul 12)
    - RE: Firefox 0.92 DoS via TinyBMP jhaunsystem (Jul 12)
    - RE: Firefox 0.92 DoS via TinyBMP Eric Paynter (Jul 13)
- AW: Firefox 0.92 DoS via TinyBMP Webmaster (Jul 12)
  - Re: AW: Firefox 0.92 DoS via TinyBMP Lee Packham (Jul 12)
    - Re: AW: Firefox 0.92 DoS via TinyBMP morning_wood (Jul 12)
- Re: Firefox 0.92 DoS via TinyBMP & Thunderbird 0.72 & Outlook Express (latest Version) thE_iNviNciblE (Jul 12)
- Re: Firefox 0.92 DoS via TinyBMP Thomas Kaschwig (Jul 12)
- Re: Firefox 0.92 DoS via TinyBMP Bernardo Santos Wernesback (Jul 12)
  - RE: Firefox 0.92 DoS via TinyBMP Sapheriel (Jul 12)
- Re: Firefox 0.92 DoS via TinyBMP Peter Ferrie (Jul 12)
- Re: Firefox 0.92 DoS via TinyBMP Jorge A. Orchilles (Jul 12)