Re: [Full-disclosure] Firefox <= 2.0 crash

From: tommy <tommy@xxxxxxxxxxxxxxxxxxxxxx>
Date: Mon, 30 Oct 2006 18:49:33 -0800

You can test it out here if you want:

http://security-protocols.com/poc/ff2_death.html

Here is what I get on OS X with the latest build of ff2

Program received signal EXC_BAD_ACCESS, Could not access memory.
Reason: KERN_PROTECTION_FAILURE at address: 0x00000004
0x001ea16b in nsParser::ParseFragment ()
(gdb) bt
#0 0x001ea16b in nsParser::ParseFragment ()
#1 0x00101748 in nsRange::CreateContextualFragment ()
#2 0x0185d98d in XPTC_InvokeByIndex ()
#3 0x0038ccfb in XPCWrappedNative::CallMethod ()

-- Tom

Matthew Flaschen wrote:

Maybe I'm copying it out wrong. Seems unlikely, but can someone who got
it to "work" (crash) upload it somewhere for a more standardized test?

Matt Flaschen

Ozan Ozkara wrote:

it works perfect on linux

On Mon, 2006-10-30 at 11:38 -0500, Matthew Flaschen wrote:

Nothing happens when I load it in Firefox 2.0 on Windows XP.

Matthew Flaschen

Carlos Barros wrote:

------------------------------------------------------------------------

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Firefox <= 2.0 crash
  - From: Matthew Flaschen

References:
- [Full-disclosure] Firefox <= 2.0 crash
  - From: Carlos Barros
- Re: [Full-disclosure] Firefox <= 2.0 crash
  - From: Matthew Flaschen
- Re: [Full-disclosure] Firefox <= 2.0 crash
  - From: Ozan Ozkara
- Re: [Full-disclosure] Firefox <= 2.0 crash
  - From: Matthew Flaschen

Prev by Date: Re: [Full-disclosure] Firefox <= 2.0 crash
Next by Date: [Full-disclosure] Sun java System Messenger Express XSS
Previous by thread: Re: [Full-disclosure] Firefox <= 2.0 crash
Next by thread: Re: [Full-disclosure] Firefox <= 2.0 crash
Index(es):
- Date
- Thread

Relevant Pages

Re: [Full-disclosure] [funsec] in Memory of Dude VanWinkle / Justin Plazzo
... Fun and Misc security discussion for OT posts. ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ...
(Full-Disclosure)
Re: [Full-disclosure] Pangolin v1.2.590 - The best SQLinjector youve ever seen
... > Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Full-Disclosure - We believe in it. ... Hosted and sponsored by Secunia - http://secunia.com/ ... Realex Payments, London, www.realexpayments.co.uk ...
(Full-Disclosure)
Re: [Full-disclosure] Undisclosed breach at major US facility
... This made it impossible for me to get timely legal help. ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ...
(Full-Disclosure)
Re: [Full-disclosure] CyTRAP Labs - Urs+Nahums Security Checklist
... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ...
(Full-Disclosure)
Re: [Full-disclosure] Remote hole in OpenBSD 4.1
... DeRaadt's claim that Intel must "be come more ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ...
(Full-Disclosure)