lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date: Wed, 14 Oct 2009 02:31:16 +0100
From: mrx <mrx@...pergander.org.uk>
To: full-disclosure@...ts.grok.org.uk
Subject: Re: Memory corruption when
 loading/unloading	Adobe objects through EMBED tag in Firefox

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 

I should have made it clear in my first response to this thread that
it is the Foxit Firefox plugin that is vulnerable and not the
standalone reader.

my bad

MrX

Rohit Patnaik wrote:
> Ah, okay.  I do that anyway, because I've had bad experiences with Firefox
> crashing when displaying embedded PDFs in the past.  Sounds like I
should be
> okay until Foxit updates its reader.
>
> Thanks,
> Rohit Patnaik
>
> On Tue, Oct 13, 2009 at 8:15 PM, mrx <mrx@...pergander.org.uk> wrote:
>
>
> Adobe has fixed this issue
>
> http://www.adobe.com/support/security/bulletins/apsb09-15.html
>
> And as this bug relates to Firefox  rendering embedded COM objects
> (PDF) inside a browser window. It should be safe to view PDF's inside
> both Adobe and Foxit readers whilst offline.
>
> MrX
>
> Rohit Patnaik wrote:
> >>> Are there any available workarounds that would mitigate the
> threat?  I
> >>> suppose I could just upload all my PDFs to Google Docs in the
> meantime,
> but
> >>> I'm looking for something that I could use while offline...
> >>>
> >>> --Rohit Patnaik
> >>>
> >>> On Tue, Oct 13, 2009 at 7:35 PM, mrx <mrx@...pergander.org.uk>
> wrote:
> >>>
> >>>
> >>> No, I installed latest updates prior to testing.
> >>> They should be aware of this however considering what appear to be
> >>> striking similarities in the code base between Foxit and Adobe
> >>> readers, at least as far as shared bugs go.
> >>> If not they will be aware of this after they read the email I
> sent them.
> >>>
> >>> MrX
> >>>
> >>> Rohit Patnaik wrote:
> >>>>>> Has Foxit released an update for this?
> >>>>>>
> >>>>>> --Rohit Patnaik
> >>>>>>
> >>>>>> On Tue, Oct 13, 2009 at 6:40 PM, mrx <mrx@...pergander.org.uk>
> >>> wrote:
> >>>>>>
> >>>>>> It would appear that Foxit reader version 3.1.1.0928 is also
> >>>>>> vulnerable to this memory corruption flaw.
> >>>>>> Foxit reader was also vulnerable to the JPEG2000/JBIG2
> decoder bug.
> >>>>>>
> >>>>>> Makes me wonder how much code is common to both Adobes and
> >>> Foxits PDF
> >>>>>> readers
> >>>>>>
> >>>>>> MrX
> >>>>>>
> >>>>>>
> >>>>>> Berend-Jan Wever wrote:
> >>>>>>>>> Adobe bulletin:
> >>>>>>>>> http://www.adobe.com/support/security/bulletins/apsb09-15.html
> >>>>>>>>>
> >>>>>>>>> Short description and repro case:
> >>>>>>>>>
> http://skypher.com/index.php/2009/10/13/memory-corruption-when-loadingunloading-adobe-objects-through-embed-tag-in-firefox/
> >>>>>>>>> Cheers,
> >>>>>>>>>
> >>>>>>>>> SkyLined
> >>>>>>>>> <
> http://skypher.com/index.php/2009/10/13/memory-corruption-when-loadingunloading-adobe-objects-through-embed-tag-in-firefox/
> >>>>>>>>> Berend-Jan Wever <berendjanwever@...il.com>
> >>>>>>>>> http://skypher.com/SkyLined
> >>>>>>>>>
> >>>>>>>>>
> >>>>>>>>>
> >>>
> ----------------------------------------------------------------------
> >>>>>>>>> _______________________________________________
> >>>>>>>>> Full-Disclosure - We believe in it.
> >>>>>>>>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> >>>>>>>>> Hosted and sponsored by Secunia - http://secunia.com/
> >>> _______________________________________________
> >>> Full-Disclosure - We believe in it.
> >>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> >>> Hosted and sponsored by Secunia - http://secunia.com/
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
> >>>
> ----------------------------------------------------------------------
> >>> _______________________________________________
> >>> Full-Disclosure - We believe in it.
> >>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> >>> Hosted and sponsored by Secunia - http://secunia.com/
>>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
>>

> ----------------------------------------------------------------------

> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
 
iQEVAwUBStUp5LIvn8UFHWSmAQJGBwgAn3ZlC2bLq6PfJPZWK5YhCuRECQhIpgUS
tp34qfKay5dyS/t7vpZNEJcd/DVC8rG9yPfqNYeg5qpwyCUrCAsp/+vYQVdTKM4q
zntupFr1jyaWHvovhMNZv2rateQh7EzIsCV9NJuD4IC5LD6IRuyg/EpATAUEvd42
Gu5Syx3HyaEF9KFxoU6MHh4o+mVCR4BpJ6p7daLqXsvVZw5F06qqNaNxE3YnjwBe
Edv6V7BOOru1BijDhoAE93lXhxTUKeLXtb7S/3/MMFw1zuKVphH0m6a03/qvo9CL
v3lS9F4680EOLJTjkRLTQzvXvL76dW3Zkb0SSAUxRjp294LfIN4Qjw==
=yfzU
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ