| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <42C1B146.9020004@kurczaba.com> Date: Wed Jun 29 03:02:23 2005 From: advisories at kurczaba.com (Kurczaba Associates Advisories) Subject: Mozilla Multiple Product JavaScript Issue Mozilla Multiple Product JavaScript Issue http://www.kurczaba.com/html/security/0506241.htm ------------------------------------------------- Vendor: Mozilla (http://www.mozilla.org) Vulnerable Software: Mozilla 1.7.8 Firefox 1.0.4 Camino 0.8.4 Vulnerability/Exploit: By using a specially crafted JavaScript function, it is possible to crash the above named browsers. The script can be executed both with and without user intervention. Proof of Concept: Manual: http://www.kurczaba.com/html/security/0506241_poc.htm Automatic: http://www.kurczaba.com/html/security/0506241_poc2.htm Workaround: Disable JavaScript Date Discovered: June 14, 2005 Severity: Low Credit: Paul Kurczaba
Powered by blists - more mailing lists