Full Disclosure mailing list archives

Re: new unpatched security flaw found Firefox 3.0.4

From: "James Matthews" <nytrokiss () gmail com>
Date: Wed, 17 Dec 2008 15:09:28 +0200

Maybe one day it will be exploited as a bug.

On Wed, Dec 17, 2008 at 12:28 PM, Andrew Farmer <andfarm () gmail com> wrote:

On 16 Dec 08, at 11:49, carl hardwick wrote:

New unpatched security flaw found in Firefox 3.0.4
PoC here: https://bugzilla.mozilla.org/attachment.cgi?id=302699


Relevant bug is https://bugzilla.mozilla.org/show_bug.cgi?id=416907

This doesn't appear to be security-critical - it's a NULL dereference.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/




-- 
http://www.astorandblack.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

new unpatched security flaw found Firefox 3.0.4 carl hardwick (Dec 16)
- Re: new unpatched security flaw found Firefox 3.0.4 Thierry Zoller (Dec 16)
- Re: new unpatched security flaw found Firefox 3.0.4 Andrew Farmer (Dec 17)
  - Re: new unpatched security flaw found Firefox 3.0.4 James Matthews (Dec 17)