Full Disclosure mailing list archives
RE: Mozilla Firefox "Host:" Buffer Overflow
From: "Larry Seltzer" <larry () larryseltzer com>
Date: Fri, 9 Sep 2005 11:59:13 -0400
I could neither find it but it appears same to
https://bugzilla.mozilla.org/show_bug.cgi?id=267669. Maybe he uses mangleme also? Also I want to know from where he copied Technical Details? Maybe it just crash 0xadc2adc2 only is kernel space. This does look funny. Clearly the two reports have a lot in common, but they aren't precisely the same. The new report has this as a POC: <A HREF=https:--------------------------------------------- > The old report has this as a crash page: <a href="http://------------------" > Can anyone tell from the details of the bugzilla if the differences affect the bug? Is it possible the old bug was reintroduced in newer versions? Larry Seltzer eWEEK.com Security Center Editor http://security.eweek.com/ http://blog.ziffdavis.com/seltzer Contributing Editor, PC Magazine larryseltzer () ziffdavis com _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- RE: Mozilla Firefox "Host:" Buffer Overflow, (continued)
- RE: Mozilla Firefox "Host:" Buffer Overflow Larry Seltzer (Sep 09)
- RE: Mozilla Firefox "Host:" Buffer Overflow Bruce Ediger (Sep 09)
- RE: Mozilla Firefox "Host:" Buffer Overflow Bruce Ediger (Sep 09)
- Re: Mozilla Firefox "Host:" Buffer Overflow Andrew R. Reiter (Sep 09)
- Re: Mozilla Firefox "Host:" Buffer Overflow Dave Aitel (Sep 09)
- Re: Mozilla Firefox "Host:" Buffer Overflow Andrew R. Reiter (Sep 09)
- Re: Mozilla Firefox "Host:" Buffer Overflow milw0rm Inc. (Sep 09)
- Re: Mozilla Firefox "Host:" Buffer Overflow Adam Polkosnik (Sep 09)
- RE: Mozilla Firefox "Host:" Buffer Overflow Larry Seltzer (Sep 09)
- RE: Mozilla Firefox "Host:" Buffer Overflow Larry Seltzer (Sep 09)
- RE: Mozilla Firefox "Host:" Buffer Overflow Larry Seltzer (Sep 10)