lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date: Mon, 01 Jan 2007 20:34:15 +0000
From: Jeroen Massar <jeroen@...ix.org>
To: sapheal@...k.pl
Cc: bugtraq@...urityfocus.com
Subject: Re: Mozilla Firefox 2.0 denial of service vulnerability

sapheal@...k.pl wrote:
> PoC exploit:
[..]

Wow you can program recursive functions! Congrats!

But that is only recursive loop, just close the page and it is done.
There are literally loads of these kind of problems in both Firefox and
IE and quite likely most other browsers.

There is a much funnier bug though, and just for the fun of it, and in
the hope that some Mozilla folks get annoyed by it and maybe fix it
after it was reported 6 years ago:

https://bugzilla.mozilla.org/show_bug.cgi?id=59314

Reported: 2000-11-06 17:11 PST
Severity: critical
Priority: P3
Target Milestone: Future
Version: Trunk
Hardware: All
OS: All

Yep, it will be fixed in _the future_ ;)

The fun of this bugger is that if you have say 20 tabs open that you
can't swap tabs back. Thus you end up killing the process, loosing all
of them. A lot of fun when you where googling for something and opening
a lot of windows.

Greets,
 Jeroen



Download attachment "signature.asc" of type "application/pgp-signature" (312 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ