Re: New Flaw in Firefox 2.0: DoS and possible remote code execution

To: 3APA3A <3APA3A@xxxxxxxxxxxxxxxx>
Subject: Re: New Flaw in Firefox 2.0: DoS and possible remote code execution
From: Jerome Athias <jerome.athias@xxxxxxx>
Date: Thu, 02 Nov 2006 20:01:19 +0100
Cc: xxxx@xxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx
In-reply-to: <1403578024.20061101181322@xxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20061031200000.18927.qmail@xxxxxxxxxxxxxxxxx> <1403578024.20061101181322@xxxxxxxxxxxxxxxx>
User-agent: Thunderbird 1.5.0.7 (Windows/20060909)

3APA3A a écrit :

Dear xxxx@xxxxxxxxx,

NULL pointer dereference is not exploitable to code execution by itself.

Hi,

you should be interested by this
http://metasploit.blogspot.com/2006/08/putting-fun-in-browser-fun.html

+ a little tool https://www.securinfos.info/outils-securite-hacking/uSEH.rar

/JA

Follow-Ups:
- Re[2]: New Flaw in Firefox 2.0: DoS and possible remote code execution
  - From: 3APA3A

References:
- Re: Re: New Flaw in Firefox 2.0: DoS and possible remote code execution
  - From: xxxx
- Re[3]: New Flaw in Firefox 2.0: DoS and possible remote code execution
  - From: 3APA3A

Prev by Date: [ECHO_ADV_60_2006] OpenEMR <=2.8.1 Multiple Remote File Inclusion Vulnerability
Next by Date: AIOCP <=1.3.007 multiples vulnerabilities [sql , remote file include , xss]
Previous by thread: Re[3]: New Flaw in Firefox 2.0: DoS and possible remote code execution
Next by thread: Re[2]: New Flaw in Firefox 2.0: DoS and possible remote code execution
Index(es):
- Date
- Thread