Re: [Full-Disclosure] Firefox 0.92 DoS via TinyBMP

From: Ali Campbell (fdisclosure_at_alicampbell.org.uk)
Date: 07/12/04

Next message: Jordan Cole (stilist): "Fwd: [Full-Disclosure] Firefox 0.92 DoS via TinyBMP"

Previous message: Richard Massa: "Re: [Full-Disclosure] Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!]"
In reply to: thE_iNviNciblE: "[Full-Disclosure] Firefox 0.92 DoS via TinyBMP"
Next in thread: David Huecking: "Re: [Full-Disclosure] Firefox 0.92 DoS via TinyBMP"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: Full-Disclosure@lists.netsys.com
Date: Mon, 12 Jul 2004 17:19:32 +0100

Just for the record, this caused 2.7 gigabyte virtual memory usage on a
PowerBook running OS X / Firefox 0.9, so it's not a x86 only issue.

thE_iNviNciblE wrote:

> Hi,
>
> there is a security vulnerability in Firebox 0.92 (latest Version)
>
> http://www.4rman.com/exploits/tinybmp.htm
>
> this link causes that your virutal memory will be rise up 1,2 GB used
> Memory...
>
> maybe Thunderbird 0.72 is also vulnerable via HTML.
>
> credits to: StupidWhiteMan
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Next message: Jordan Cole (stilist): "Fwd: [Full-Disclosure] Firefox 0.92 DoS via TinyBMP"

Previous message: Richard Massa: "Re: [Full-Disclosure] Norton AntiVirus Scanner Remote Denial Of ServiceVulnerability [Part: !!!]"
In reply to: thE_iNviNciblE: "[Full-Disclosure] Firefox 0.92 DoS via TinyBMP"
Next in thread: David Huecking: "Re: [Full-Disclosure] Firefox 0.92 DoS via TinyBMP"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]