BugTraq
Flaw in Firefox 2.0 RC2 Oct 17 2006 09:09AM
Mike gmail com (5 replies)
RE: Flaw in Firefox 2.0 RC2 Oct 19 2006 02:38PM
Sean Warnock (swarnock warnocksolutions com)
Re: Flaw in Firefox 2.0 RC2 Oct 19 2006 12:59PM
Lubomir Kundrak (lkundrak redhat com)
Re: Flaw in Firefox 2.0 RC2 Oct 18 2006 03:16AM
Shane Lahey (s lahey nl rogers com)
Re: Flaw in Firefox 2.0 RC2 Oct 18 2006 12:28AM
jm (jm hcn com au) (2 replies)
Re: Flaw in Firefox 2.0 RC2 Oct 19 2006 05:05PM
Mark A Basil (mark basil markmonitor com) (1 replies)
Re: Flaw in Firefox 2.0 RC2 Oct 20 2006 08:45AM
Jure Pečar (pegasus nerv eu org)
RE: Flaw in Firefox 2.0 RC2 Oct 18 2006 10:47PM
Aras \Russ\ Memisyazici (arasm vt edu)
Re: Flaw in Firefox 2.0 RC2 Oct 17 2006 06:45PM
Jose Nazario (jose monkey org) (1 replies)
Re: Flaw in Firefox 2.0 RC2 Oct 17 2006 10:05PM
Eliah Kagan (degeneracypressure gmail com) (2 replies)
Re: Flaw in Firefox 2.0 RC2 Oct 18 2006 04:19PM
Paul Schmehl (pauls utdallas edu)
--On Tuesday, October 17, 2006 18:05:22 -0400 Eliah Kagan
<degeneracypressure (at) gmail (dot) com [email concealed]> wrote:

> On 10/17/06 at about 5am EST, Mike wrote:
>> http://lcamtuf.coredump.cx/ffoxdie.html
>> this exploit still works with the latest Firefox 2.0 RC3
>
> Later that day, Jose Nazario wrote:
>> also caused FFox 1.5.0.7 on OS X i386 to die.
>
> Also Firefox 1.5.0.7 on Windows XP Pro SP2 (English).
>
And Firefox 1.5.0.7 on FreeBSD 6.0 RELEASE.

Paul Schmehl (pauls (at) utdallas (dot) edu [email concealed])
Adjunct Information Security Officer
The University of Texas at Dallas
http://www.utdallas.edu/ir/security/
0?ñ *?H?÷
 ?â0?Þ1 0 +0  *?H?÷
 ? Þ0?÷0?` ú½?Íá^Á±ÀØÌ?þ0
 *?H?÷
0ê1'0%U
The University of Texas System10U VeriSign Trust Network1;09U 2Terms of use at https://www.verisign.com/rpa (c)991200U )Class 2 CA - OnSite Individual Subscriber1-0+U$The University of Texas at Dallas CA0
060831000000Z
070831235959Z0ô1'0%U
The University of Texas System1-0+U $The University of Texas at Dallas CA1F0DU =www.verisign.com/repository/CPS Incorp. by Ref.,LIAB.LTD(c)9910U Mail Stop - UTD10U Paul Schmehl1!0 *?H?÷
 pauls (at) utdallas (dot) edu0 [email concealed]?"0
 *?H?÷
?0?
?Ów?|?9î±\<?R??$]Êa,ÌZ??h¾b""ØÉ???5w
õ&&²#?=é°?¦t
b¨hg6ÆØÁ<SWõúI?×UP+ ÓøhjËeDéû?¿f¹HÕMôèN4ÆÙE?Uc?l«p ~? N)r/á&bxÐÞn=Âë?U?K½H°ßIÂ-m*_¼_?/ÐÞ?¸aÛÜý!Ç?>?ø?YCs?vÎ?6#EËÛÐå
?Ó:­?Þ?lØ?)?G?Æ3?éæD}LÏüßÛ+?É`Ê?û¡k??Y®4§y¸zϐ?â\úºýë?£? 0?0 U00U0pauls (at) utdallas (dot) edu0 [email concealed]?$U ?0?0? `?H?øE0?0++https://www.verisign.com/rpa-
kr0Ò+0ÅÂNOTICE: Private key may be recovered by VeriSign's customer who may be able to decrypt messages you send to certificate holder. Use is subject to terms at https://www.verisign.com/rpa-kr (c)99.0 `?H?øB?0uUn0l0j h f?dhttp://onsitecrl.verisign.com/TheUnive
rsityofTexasSystemTheUniversityofTexasatDallasCA/LatestCRL.crl0 U
?0U%0++0
 *?H?÷
{yÙtÿà1aæ?GÄ MÍ]û÷¬MÕª?=ÀÒTPÍ´±Æà76e¾¥
¦^BäEß]_Úïjn@màïD¨ê?Ý%Ë¥ü`8í@ZñI¢?Bn °:ê­½?åA¦vSÙË^ºZA>É?t0îF?æOjÈ?¿Í¹°Q+mÓ0?Ø0?A Aì=§?ÄöÕ ÝÑe0
 *?H?÷
0Á1 0 UUS10U
VeriSign, Inc.1<0:U 3Class 2 Public Primary Certification Authority - G21:08U 1(c) 1998 VeriSign, Inc. - For authorized use only10U VeriSign Trust Network0
990331000000Z
090330235959Z0ê1'0%U
The University of Texas System10U VeriSign Trust Network1;09U 2Terms of use at https://www.verisign.com/rpa (c)991200U )Class 2 CA - OnSite Individual Subscriber1-0+U$The University of Texas at Dallas CA0?0
 *?H?÷
0?¿êï?ë
Áù"ÁÑÁÌÛzÚ¾6Òp`0`åàS/5ôɨ)ÖÞ=ó?d}¾Ñ?Tx?ÿ¢xñû?«Ãü?LÂIA
áÀÒ¥×ü~ÿBQNtóÕhs¥]1øæ)%c¨#?Dj?°9ñïÛFXú¸ÏKózÁ¢I??#Cº?2?£¥0¢0
)U"0 ¤010UPrivateLabel1-1400 `?H?øB0DU =0;09 `?H?øE0*0(+https://www.verisign.com/RPA0U
0ÿ0 U0
 *?H?÷
S µÜ²¶?Ñ P?É8yÜȲI¿¸S?o?̲äz|ü£è_a^_??ZÒ?"ñ¼íñT¶T¦T¡T¼iÇ!7¢?9?§¬ ?è?]?
H9Y?$ C¼??Ü?táæã¾j¤?11#%?¯º,Q?Y¦£?Ò´ÎT0?0?l¹/`Ì??¡zF ¸[pl?¯0
 *?H?÷
0Á1 0 UUS10U
VeriSign, Inc.1<0:U 3Class 2 Public Primary Certification Authority - G21:08U 1(c) 1998 VeriSign, Inc. - For authorized use only10U VeriSign Trust Network0
980518000000Z
280801235959Z0Á1 0 UUS10U
VeriSign, Inc.1<0:U 3Class 2 Public Primary Certification Authority - G21:08U 1(c) 1998 VeriSign, Inc. - For authorized use only10U VeriSign Trust Network0?0
 *?H?÷
0?§?!t,çð?á?<!ñ?Û?é?ü¾_RÈÌ,V,¸i,Ì?­°?®yò9Á{?º
,èÂ?,ªié ôÇ©¤BÂ#OJØð¢û1lÉæo?'õæôLx?mëF?ú¹?ÉTò²Ä¯ÔFZÉ0ÿ
lõ-mÎw0
 *?H?÷
r.ùÑñqûÄ?öÅ^Q?@?¸hø??Ø❽ÿí¡æfê/ ôÊ×ê¥+?ö$`?MD.?¥Ä- Ó®xiorÚl®ðc?7æ»Ä0­wÌI5ªÏ؏Ѿ·?GsjT"4d-¶?Y[´QY:³ 
ôßg ô­2d^±Fr'?{ÅD´®1?Û0?×0ÿ0ê1'0%U
The University of Texas System10U VeriSign Trust Network1;09U 2Terms of use at https://www.verisign.com/rpa (c)991200U )Class 2 CA - OnSite Individual Subscriber1-0+U$The University of Texas at Dallas CAú½?Íá^Á±ÀØÌ?þ0 + ±0 *?H?÷
 1  *?H?÷
0 *?H?÷
 1
061018161916Z0# *?H?÷
 1m:e£ìÒ5ìLÄü?=3$|¾XÀ0R *?H?÷
 1E0C0
*?H?÷
0*?H?÷
?0
*?H?÷
@0+0
*?H?÷
(0
 *?H?÷
?)CËûëÀ
c?ÔTöuÉ£ªp·? ñþó?Hfäî¸ZÇ???^!»?q1íÆ5¤0¿XýÚZ?æ[õ¯aÀÓ?ç

?iX?º?|J£m4Dt`?ÊYWǪ??ÝW2äÀoì°mÒak:??X¥õ ;o·»è ndôCd'äkêaÓ/ï7ùv?¥±³Þ[c)|ÔjvVÆZ°?EB&ééì¢Lè'¼²éz`?ñ!q]½RçVk
Ãáñhà'ÑMJÍïèò¿?÷µê?"&ÄÀ-%?*jóÅ?J?{Iñ>\²oö(-?Ö

[ reply ]
Re: Flaw in Firefox 2.0 RC2 Oct 18 2006 03:46PM
arny (arny arny ro)


 

Privacy Statement
Copyright 2010, SecurityFocus