Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
BugTraq
Firefox onUnload + document.write() memory corruption vulnerability (MSIE7 null ptr) Feb 23 2007 01:36AM
Michal Zalewski (lcamtuf dione ids pl) (1 replies)
Re: [Full-disclosure] Firefox onUnload + document.write() memory corruption vulnerability (MSIE7 null ptr) Feb 25 2007 04:32PM
Daniel Veditz (dveditz cruzio com) (1 replies)
Michal Zalewski wrote:
> A quick test case that crashes while trying to follow partly
> user-dependent corrupted pointers near valid memory regions (can be forced
> to write, too):
>
> http://lcamtuf.coredump.cx/ietrap/testme.html
>
> Firefox problem is being tracked here:
> https://bugzilla.mozilla.org/show_bug.cgi?id=371321

This bug was fixed in 2.0.0.2, released Friday Feb 23.

[ reply ]
Re: [Full-disclosure] Firefox onUnload + document.write() memory corruption vulnerability (MSIE7 null ptr) Feb 25 2007 04:57PM
Stan Bubrouski (stan bubrouski gmail com) (2 replies)
Re: [Full-disclosure] Firefox onUnload + document.write() memory corruption vulnerability (MSIE7 null ptr) Feb 25 2007 10:40PM
Michal Zalewski (lcamtuf dione ids pl)
Re: [Full-disclosure] Firefox onUnload + document.write() memory corruption vulnerability (MSIE7 null ptr) Feb 25 2007 06:11PM
Ismail Dönmez (ismail pardus org tr)







 

Privacy Statement
Copyright 2009, SecurityFocus