• info
• discussion
• exploit
• solution
• references

Mozilla Firefox XSL Parsing 'root' XML Tag Remote Memory Corruption Vulnerability

An attacker can exploit this issue by enticing an unsuspecting victim to view a malicious file using the affected browser.

The following proof of concept is available:

• /data/vulnerabilities/exploits/2009-ffox-poc.tar.gz
• /data/vulnerabilities/exploits/34235.xml