KevinO wrote:
> > Scott wrote:
>
>> There is a known exploit available that will crash Firefox 1.5.
>>
> It appears to be a bug, and not an exploit. It made my browser hang, but not
> close completely.
>
> Packetstorm calls it a DOS proof of concept, which is a completely different
> animal than an exploit.
>
>
The code that is posted exploits the vulnerability, it is thus an exploit.
>> I have
>> tested it on several of my own systems. I found it up on
>> packetstormsecurity.org the other day, and here is the link:
>>
>> http://packetstormsecurity.org/0606-exploits/moz1504.txt
>>
>> So probably there are people embedding this into their sites either on
>> purpose or through plain coding coincidence.
>>
>>
> I doubt it. This one really isn't worth the bother. There are too many other ways
> to intentionally hang a web browser, and nothing to be gained unless you could
> inject some shell code with it.
>
>
The only thing gained would be to keep people from browsing the web.
> Let me know when you find it "out in the wild."
>
>
No problem.
> Cheers,
> - --
> KevinO
> > ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change you mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
>
---------------------------------------------------
PLUG-discuss mailing list -
PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change you mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
(text/plain)