Mozilla Firefox 3.6 - XML Parser Memory Corruption (PoC) / Denial of Service

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1059100 漏洞类型
发布时间 2010-01-24 更新时间 2010-01-24
CVE编号 N/A CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/11245
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
# Firefox 3.6(XML parser)memory corruption PoC/Dos
# by d3b4g 
# From tiny islands of maldivies
# Tested: version 3.6
# Tested on windows XP SP3
# 20-01-2010


This same bug was in early version of firfox,found by (Wojciech Pawlikowski) This is just a update.

This vulnerability  cause a denial of service (memory corruption) via an XML document composed of a long series of start-tags with no corresponding end-tags.

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/11245.rar (Firefox-v3.6_PoC.rar)