Re: [Full-disclosure] Firefox 2.0.0.7 has a very serious calculation bug

carl hardwick wrote:
There's a flaw in Firefox 2.0.0.7 allows javascript to execute wrong
subtractions.

PoC concept here:
javascript:5.2-0.1
(copy this code into address bar)

Firefox 2.0.0.7 result: 5.1000000000000005 (WRONG!)
Internet Explorer 7 result: 5.1 (OK)


Please read <https://bugzilla.mozilla.org/show_bug.cgi?id=5856>.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Relevant Pages

  • Re: "crew" and "butch"
    ... difference in the ways Firefox and Internet Explorer handle ... I use Firefox almost exclusively myself. ... I tried unwrapping the URL in my original post and copying it back to the address bar of Firefox, just to see if there was some problem with it, but couldn't reproduce your problem. ... but all in the family can enjoy a Fanny from time to time. ...
    (alt.usage.english)
  • Re: "crew" and "butch"
    ... indeed get a page with "Fanny" on it in several places. ... difference in the ways Firefox and Internet Explorer handle ... actually originally copied into my original message from the address bar ...
    (alt.usage.english)
  • Re: Hide pagename
    ... NET csgallagher AT metromilwaukee.com ... bar of internet explorer or firefox. ...
    (microsoft.public.dotnet.framework.aspnet)
  • Searching from address bar
    ... In Firefox when you search from the address bar you are taken directly to the ... Is there a way to make Internet Explorer do this? ... Prev by Date: ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
  • Re: [Full-disclosure] Re: Arin.net XSS
    ... works for me on internet explorer, didn't work with firefox 1.5 ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ...
    (Full-Disclosure)