Full Disclosure mailing list archives

Re: new unpatched security flaw found Firefox 3.0.4

From: Thierry Zoller <Thierry () Zoller lu>
Date: Wed, 17 Dec 2008 00:56:15 +0100

Hmm,
Why not link the bug posting itself, why not wait until patched?
ch> New unpatched security flaw found in Firefox 3.0.4
ch> PoC here: https://bugzilla.mozilla.org/attachment.cgi?id=302699

nsHTMLFramesetFrame::Reflow(nsPresContext*, nsHTMLReflowMetrics&, nsHTMLReflowState const&, unsigned int&)
http://bonsai.mozilla.org/cvsblame.cgi?file=mozilla/layout/generic/nsFrameSetFrame.cpp&rev=3.210&mark=1156#1156

-- 
http://secdev.zoller.lu
Thierry Zoller

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

new unpatched security flaw found Firefox 3.0.4 carl hardwick (Dec 16)
- Re: new unpatched security flaw found Firefox 3.0.4 Thierry Zoller (Dec 16)
- Re: new unpatched security flaw found Firefox 3.0.4 Andrew Farmer (Dec 17)
  - Re: new unpatched security flaw found Firefox 3.0.4 James Matthews (Dec 17)