Flock browser marquee tag DoS

0 views
Skip to first unread message

Lostmon lords

unread,
Apr 1, 2010, 10:36:45 AM4/1/10
to moder...@osvdb.org, bu...@securitytracker.com, vu...@securityfocus.com, vu...@secunia.com, vu...@k-otik.com, submi...@packetstormsecurity.org, ne...@securiteam.com, xfo...@iss.net, ale...@zataz.net, Vu...@frsirt.com, David, Noam Rathaus, los...@googlegroups.com
############################################
Flock browser marquee tag DoS
advisore:http://lostmon.blogspot.com/2010/04/flock-browser-marquee-tag-dos.html
############################################


Flock browser contains a flaw that may allow a remote denial of service.
The issue is triggered when an Victim visit a specially crafted web page
with a lot of marquee html tag and it will result in loss of availability
( DoS ) for Browser and posible memory corruption.

This bug was first discover by '599eme Man fl...@live.fr' and this
is a extended research about it, he was discovered in those browsers:
Opera 10.10
Firefox 3.5.7
Safari 4.0.4
SeaMonkey 2.0.1

and i test it in :

Flock Browser 1.2.6 vulnerable
Flock Browser 2.5 vulnerable

a sample code can be found/download here =>
http://www.exploit-db.com/exploits/11347

########################€nd ###################

Thnk to estrella to be my ligth

--
atentamente:
Lostmon (los...@gmail.com)
Web-Blog: http://lostmon.blogspot.com/
Google group: http://groups.google.com/group/lostmon (new)
--
La curiosidad es lo que hace mover la mente....

Reply all
Reply to author
Forward
0 new messages