Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Firefox onUnload + document.write() memory corruption vulnerability (MSIE7 null ptr)

From: Paul Schmehl <pauls () utdallas edu>
Date: Sun, 25 Feb 2007 13:41:13 -0600
--On February 25, 2007 8:44:45 PM +0200 Ismail Dönmez <ismail () pardus org tr> wrote: 


On Sunday 25 February 2007 20:27:19 Stan Bubrouski wrote:

The test on that page still puts my 2.0.0.2 in a completely unusable
state, try it yourself and let me know what happens.


Doesn't crash here on Linux, I just see http://slashdot.org in URL bar
and  empty page below, so I can confirm 2.0.0.2 fixed the issue.


Ditto for Firefox 2.0.0.2 on Mac OS X.

Paul Schmehl (pauls () utdallas edu)
Senior Information Security Analyst
The University of Texas at Dallas
http://www.utdallas.edu/ir/security/

Attachment: _bin
Description: 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: