Results 1 to 5 of 5

Thread: How to attack Firefox code

  1. #1
    Senior Member
    Join Date
    Jul 2004

    How to attack Firefox code

    I didn't see this posted anywhere, but How to attack firefox code has been posted on the net. Firefox has a patch available, but Netscape which is based on firefox hasn't.

  2. #2
    Join Date
    Jul 2005
    I thought Firefox was based on Netscape and not the other way around? And Mozilla must be included somewhere in this all too.

  3. #3
    Senior Member
    Join Date
    Jan 2002
    The latest version of netscape is built on java, not the mozilla engine like it used to... and is capable of emulating both Firefox engine, and IE6 engine. You can pick which engine to use from within the browser.

  4. #4
    AntiOnline Senior Medicine Man
    Join Date
    Nov 2001

    Re: How to attack Firefox code

    The flaw lies in the way the browsers handle International Domain Names, which are web addresses that use international characters [/B]
    Is anyone else wondering how this flaw with different charactars being allowed, lets people run arbitrary code? So far I havent found anything technical, only news articals like this one.
    It is better to be HATED for who you are, than LOVED for who you are NOT.

    THC/IP Version 4.2

  5. #5
    I am interested in the other firefox flaw: allowing a buffer-overrun to happen when a long url is passed to firefox using the shell. I read when you using evolution email program that includes an url to pop open a firefox session, a long url can trick firefox to crash. Is this the exploit everyone is talking about? When I first read the article, I remembered the Unicode exploit Microsoft browsers had in the past. History repeating itself. Mozilla is just like President Bush....I will take you to war but don't blame me for crap, never ever.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts