BugTraq
Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3.... Jul 21 2009 10:58AM
Thierry Zoller (Thierry zoller lu) (1 replies)
Re: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3.... Jul 21 2009 03:12PM
Michal Zalewski (lcamtuf coredump cx) (2 replies)
Re[2]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3.... Jul 21 2009 08:00PM
Thierry Zoller (Thierry zoller lu) (1 replies)
Re: Re[2]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3.... Jul 21 2009 08:05PM
Michal Zalewski (lcamtuf coredump cx) (2 replies)
Re[4]: [Full-disclosure] Update: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari, Opera, Chrome, Seamonkey, iPhone, iPod, Wii, PS3.... Jul 21 2009 11:03PM
Thierry Zoller (Thierry zoller lu) (1 replies)
Hi Michal,

MZ> which does not seem to be that far
MZ> from creating an overly nested DOM tree, or drawing an oversized

Interesting tidbit:
The W3C DOM specifies the select.length attribute to be *read only*.
Yet (all) browsers have implemented it allowing to write to it. I
am not sure what use that has (?) but one thing is sure, they failed
to add a limit, the W3C didn't, but that's because it was never meant
to be written to in the first place.

--
http://blog.zoller.lu
Thierry Zoller

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus