Re: [Full-disclosure] Kmail <= 1.9.1 (latest) DOS

From: nnp <version5@xxxxxxxxx>
Date: Tue, 10 Oct 2006 23:59:46 +0100

I have narrowed down the bug. Here is the update:

Description:
Kmail can be crashed due to incorrectly parsing certain HTML elements.
In this case the <img> tag is incorrectly parsed if the src attribute
is a malformed file link.
A sample mail can be found here
http://silenthack.co.uk/nnp/exploits/kmail/imgCrash .

On 10/10/06, the.soylent <the.soylent@xxxxxxxxx> wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

nnp schrieb:

Have you verified this on any other ubuntu systems besides your own?

Confirmed on 6 other systems, also one kubuntu (with kde) is affected.
all have nvidia, but also some with nvidia are not affected.. strange..
/soylent

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFK3ByY86qEhC92cgRAhDBAKCARhfI/baRKHqfxQkhHsxim71e0ACfZyAr
aiBLc3mn5Qd/AHqqTKdxV6w=
=PmXv
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

--
http://silenthack.co.uk

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Kmail <= 1.9.1 (latest) DOS
  - From: nnp
- Re: [Full-disclosure] Kmail <= 1.9.1 (latest) DOS
  - From: the.soylent
- Re: [Full-disclosure] Kmail <= 1.9.1 (latest) DOS
  - From: SecuriTeam Expert
- Re: [Full-disclosure] Kmail <= 1.9.1 (latest) DOS
  - From: the.soylent
- Re: [Full-disclosure] Kmail <= 1.9.1 (latest) DOS
  - From: nnp
- Re: [Full-disclosure] Kmail <= 1.9.1 (latest) DOS
  - From: the.soylent

Prev by Date: Re: [Full-disclosure] Is Firefox JavaScript flawed ?
Next by Date: [Full-disclosure] ShmooCon 2007 CFP Announcement
Previous by thread: Re: [Full-disclosure] Kmail <= 1.9.1 (latest) DOS
Next by thread: Re: [Full-disclosure] Kmail <= 1.9.1 (latest) DOS
Index(es):
- Date
- Thread

Relevant Pages

Re: [Full-disclosure] VPN provider helped track down alleged LulzSec member
... if the vpn provider had not shat themself, then it would be a non story. ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ...
(Full-Disclosure)
Re: [Full-disclosure] [OT] Obama said: "American people understand that not everybodys been foll
... **Steve Crawshaw, former B&B boss ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ... Full-Disclosure - We believe in it. ...
(Full-Disclosure)
Re: [Full-disclosure] [OT] Obama said: "American people understand that not everybodys been foll
... **Steve Crawshaw, former B&B boss ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ... Full-Disclosure - We believe in it. ...
(Full-Disclosure)
Re: [Full-disclosure] Obama Order Sped Up Wave of Cyberattacks Against Iran
... gave it a name: Stuxnet. ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ...
(Full-Disclosure)
Re: [Full-disclosure] Congratulations Andrew
... Happens those "youth hackers" don't return what they stole. ... Full-Disclosure - We believe in it. ... Charter: ... Hosted and sponsored by Secunia - ...
(Full-Disclosure)