Name | firefox_appendchild |
---|---|
CVE | CVE-2010-3765 Exploit Pack |
VENDOR: Mozilla | |
Notes: Interleaving document.write and appendChild can lead to duplicate text | |
frames and overrunning of text run buffers. |
This exploit can only be used from clientd.
Tested on:
Windows XP SP3 ENG with Firefox 3.6.11.
JavaScript Obfuscated.
We do not currently do process recovery in this exploit.
VersionsAffected: Firefox <=3.6.11
Repeatability: Infinite
References: [βhttps://bugzilla.mozilla.org/show_bug.cgi?id=607222β]
Date public: 10/26/2010