Full Disclosure mailing list archives

x90c WOFF Firefox 1day exploit

From: x90c <geinblues () gmail com>
Date: Sat, 17 Aug 2013 18:52:42 +0900

Hi Forks!

I share my WOFF 1day exploit.

(dep bypass)

* vulnerability:
    CVE-2010-1028 WOFF Heap Corruption due to Integer Overflow

* affacted Products:
    - Mozilla Firefox 3.6 ( Gecko 1.9.2 )
    - Mozilla Firefox 3.6 Beta1, 3, 4, 5 ( Beta2 ko not released )
    - Mozilla Firefox 3.6 RC1, RC2


x90c

Attachment: x90c_WOFF_exploit.tgz
Description:

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

x90c WOFF Firefox 1day exploit x90c (Aug 17)