info
discussion
exploit
solution
references
Mozilla Browser Non-ASCII Hostname Heap Overflow Vulnerability
References:
Bugzilla Bug 250900 nsIBrowserHistory corrupts URI strings
(Mozilla)
Bugzilla Bug 256316 non-ascii char in URL lead to heap overrun
(Mozilla)
VU#808216 - Mozilla contains heap overflow in UTF8 conversion of hostname portio
(US-CERT)
Privacy Statement
Copyright 2010, SecurityFocus
