Advice On FireFox Bug
Next message: new.security_at_gmail.com: "font book crash os x"
To: <vuln-dev@securityfocus.com>
Date: Sat, 30 Jul 2005 16:28:20 +0100
Hello All,
After the recent increase of Internet Browser exploits I couldn't help but
give it a quick play.
After a bit of playing I found a bug with the latest version of FireFox
which seems to work on Win2K & WinXP.
I believe the bug to be with one of the plugins but since im not a
coder/reverse enigneerer it's a bit difficult to understand what's causing
the problem.
Anyway as a quick test I attached OllyDbg to FireFox and loaded up my 'evil'
html file and followed it through and found that FireFox crashes with the
same exception on both Win2K & WinXP.
Now what I need to work out now is which part of my html file is causing the
problem.
Is there anyway way I can trace FireFox as it runs through each piece of
HTML code?
Also what other ways can I analyse the bug?
Thanks
John Cobb
www.NoBytes.com
(This bug is 0day. If you work for a nice rich security company and want to
purchase this of me, email me: johnc@nobytes.com :) )
Next message: new.security_at_gmail.com: "font book crash os x"
Relevant Pages
- Re: While-loop not listening to conditions
... It spins for ages on any kind of page load, chugs when scrolling, chugs when typing anything in, all on a dual-core 2GHz system with 1GB of RAM. ... Firefox is much faster to become usable and to surf with even on a Vista box with comparable hardware, and Google Chrome is faster still, but not as "full-featured" for sites that heavily use pdfs, Flash, and the like. ... Oh well, at least it isn't the bad old days when the only viable choice of browser was Internet Exploder and if the tracking bug failed to load, Internet Exploder stopped loading the whole page and told you "The page cannot be displayed..." ...
(comp.lang.java.programmer) - Re: KDE, openoffice bug
... firefox, but I installed firefox 3.5 from tarballs downloaded at the mozilla ... Another poster mentioned that the KDE settings do not affect OOo. ... to the bug and change it's title appropriately. ... But if there are little yellow cells, or "notes" embedded in the web pages, when I paste them onto an OpenOffice writer doc, the whole OOo program crashes. ...
(Debian-User) - Re: CUPS vs lpd (was Re: Giving up on Iceweasel 3.0)
... It seems clear that the Firefox developers did not ... PostScript/Default, lpr., etc. ... Surely it is a bug. ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ...
(Debian-User) - [Full-disclosure] MDKSA-2005:169 - Updated mozilla-firefox packages fix multiple vulnerabilities
... A number of vulnerabilities have been discovered in Mozilla Firefox ... A bug in the way Firefox processes XBM images could be used to execute ... GPG public key of the Mandriva Security Team by executing: ...
(Full-Disclosure) - MDKSA-2005:169 - Updated mozilla-firefox packages fix multiple vulnerabilities
... A number of vulnerabilities have been discovered in Mozilla Firefox ... A bug in the way Firefox processes XBM images could be used to execute ... GPG public key of the Mandriva Security Team by executing: ...
(Bugtraq) |
|
