108742 – Firefox 1.0.7 IFRAME Float Stack Overflow

Bug 108742 - Firefox 1.0.7 IFRAME Float Stack Overflow

Summary: Firefox 1.0.7 IFRAME Float Stack Overflow

Status:	RESOLVED WONTFIX

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	High trivial
Assignee:	Gentoo Security

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2005-10-10 10:13 UTC by Andrew Gaydenko
Modified:	2005-10-10 12:13 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Andrew Gaydenko 2005-10-10 10:13:01 UTC

Firefox 1.0.7 IFRAME Float Stack Overflow:

http://www.securitylab.ru/vulnerability/source/240941.php

Exploit:

www.security-protocols.com/poc/sp-x19-poc.html

I have checked. Firefox crashed.


Reproducible: Always
Steps to Reproduce:

Comment 1 Tavis Ormandy (RETIRED) gentoo-dev

2005-10-10 12:13:52 UTC

browser DoS is not a valid security issue, if this has not been reported 
upstream already they may be interested.