SecurityTeam US Contribute  :  Advanced Search  :  Web Resources  :  Polls  :  File Repository  
 
advanced search  
Poll
What would you like to see on SecurityTeamUS?
More News
Product Reviews
HowTo's
Custom RPM/Packages/Tools
Other (Please leave comment)
Results
96 votes | 0 comments
Topics
Home
Apache
Apple
Application Software
Cisco Systems
Database Servers
Internet Explorer
Linux
Macromedia
Microsoft
Mozilla/Firefox
Phishing/ID Theft
Real Networks
Security News
Sun Microsystems
Web Appliances/Devices
Web Scripts
Wi-Fi
Virus Alerts
Events
There are no upcoming events
 Welcome to SecurityTeam US
 Monday, February 06 2012 @ 12:58 PM EST

Firefox URL Domain Name Buffer Overflow

    
Friday, September 09 2005 @ 06:05 PM EDT

Mozilla/FirefoxThe vulnerability is caused due to an error in the handling of an URL that contains the 0xAD character in its domain name. This can be exploited to cause a heap-based buffer overflow.

Successful exploitation crashes Firefox and may potentially allow code execution but requires that the user is tricked into visiting a malicious web site or open a specially crafted HTML file.

The vulnerability has been confirmed in version 1.0.6, and is reported to affect versions prior to 1.0.6, and version 1.5 Beta 1.

SOFTWARE:
Mozilla Firefox 1.x

SOLUTION:
Don't browse untrusted web sites.

PROVIDED AND/OR DISCOVERED BY:
Tom Ferris

ORIGINAL ADVISORY:
http://security-protocols.com/advisory/sp-x17-advisory.txt

VERIFY ADVISORY:
http://secunia.com/advisories/16764/

Secunia Security Advisories

 
What's Related

Story Options

Firefox URL Domain Name Buffer Overflow | 1 comments | Create New Account
The following comments are owned by whomever posted them. This site is not responsible for what they say.
Firefox URL Domain Name Buffer Overflow
Authored by: TheLionHeart on Saturday, September 10 2005 @ 04:43 PM EDT
 Copyright © 2012 SecurityTeam US
 All trademarks and copyrights on this page are owned by their respective owners.		   Get Firefox!
Dedicated Servers
Created this page in 0.17 seconds