[25726] in bugtraq
Re: remote DoS in Mozilla 1.0
daemon@ATHENA.MIT.EDU (Tom)
Tue Jun 11 13:15:02 2002
Date: Tue, 11 Jun 2002 15:35:14 +0200
From: Tom <tom@lemuria.org>
To: Stijn Jonker <SJCJonker@SJC.nl>
Cc: bugtraq@securityfocus.com
Message-ID: <20020611153514.A20669@lemuria.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <Pine.LNX.4.44.0206111457420.20762-100000@ph-wks-01.sjc.nl>; from SJCJonker@SJC.nl on Tue, Jun 11, 2002 at 03:05:31PM +0200
On Tue, Jun 11, 2002 at 03:05:31PM +0200, Stijn Jonker wrote:
> Is this really a mozilla bug?
It's a bug in X that becomes remote-exploitable through mozilla.
> The solution(s):
> (a) Fix every app to disallow font sizes bigger then <maxvalue>
> (b) Fix XFS to return an error code to the calling application
> when requested font size is greater then configured <maxvalue>
>
> Personally i would go for b.
Personally, I would go for both, with a limitation on a, namely that
apps that accept remote data (i.e. mozilla) should definitely do some
checking on that data before handing it to the local system (i.e. X).
--
New GPG Key issued (old key expired):
http://web.lemuria.org/pubkey.html
pub 1024D/2D7A04F5 2002-05-16 Tom Vogt <tom@lemuria.org>
Key fingerprint = C731 64D1 4BCF 4C20 48A4 29B2 BF01 9FA1 2D7A 04F5
