[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Another Netscape Bug (and possible security hole)

To: Ray Cromwell <[email protected]>
Subject: Re: Another Netscape Bug (and possible security hole)
From: Laurent Demailly <[email protected]>
Date: Fri, 22 Sep 1995 12:14:59 +0200
Cc: [email protected]
In-Reply-To: <[email protected]>
References: <[email protected]>
Sender: [email protected]

Ray Cromwell writes:
 > 
 > I've found a Netscape bug which I suspect is a buffer overflow and
 > may have the potential for serious damage. If it is an overflow bug,
 > then it may be possible to infect every computer which accesses a web
 > page with Netscape. To see the bug, create an html file containing
 > the following:
[...]
The sortest host length I've found to cause seg fault is 356 (yes, and
not 256, 256+100 if you prefer :))
You can have a look at http://hplyot.obspm.fr/~dl/netscapesec/ for a
'demo' (click to crash)


dl
--
Laurent Demailly * http://hplyot.obspm.fr/~dl/ * Linux|PGP|Gnu|Tcl|...  Freedom
Prime#1: cent cinq mille cent cinq milliards cent cinq mille cent soixante sept

Legion of Doom SEAL Team 6 Cocaine class struggle AK-47 jihad
fissionable

References:
- Another Netscape Bug (and possible security hole)
  - From: Ray Cromwell <[email protected]>

Prev by Date: Re: Netscape to end Linux support?
Next by Date: Re: Project: a standard cell random number generator
Prev by thread: Re: Another Netscape Bug (and possible security hole)
Next by thread: Re: Another Netscape Bug (and possible security hole)
Index(es):
- Date
- Thread