Netscape/Mozilla IRC Buffer Overflow Vulnerability
Results 1 to 2 of 2

Thread: Netscape/Mozilla IRC Buffer Overflow Vulnerability

  1. #1
    Fastest Thing Alive s0nIc's Avatar
    Join Date
    Sep 2001
    Location
    Sydney
    Posts
    1,584

    Cool Netscape/Mozilla IRC Buffer Overflow Vulnerability

    Netscape and Mozilla crash when handling an exceptionally long request (32KB+) for a channel using the IRC protocol.

    This issue is most likely due to a buffer overflow condition, but it is not known whether this condition may be exploited to execute arbitrary attacker-supplied instructions.


    Mozilla is a freely available, open-source web browser. It runs on most Linux and Unix variants, as well as MacOS and Microsoft Windows 9x/ME/NT/2000/XP operating systems. Netscape is another web-browser product which runs on the same platforms as Mozilla.

    Remote: Yes

    Exploit: A demonstration of how this may cause a denial of service to occur can be found at the following website:

    http://jscript.dk/2002/4/moz1rc1test...eroverrun.html


    Source: http://www.xatrix.org/article1454.html

  2. #2
    Member
    Join Date
    Aug 2001
    Posts
    66
    Netscape is Mozilla.
    Ah well...I\'m back on AntiOnline!

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides