Mozilla Firefox - Interleaving 'document.write' / 'appendChild' (Metasploit)

$Id: mozillainterleavedwrite.rb 11796 2011-02-22 20:49:44Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Mozilla Firefox Interleaving document.write / appendChild Code Execution

$Id: mozillainterleavedwrite.rb 11773 2011-02-18 02:23:10Z scriptjunkie $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Mozilla Firefox Interleaved document.write/appendChild Memory Corruption

This module exploits a code execution vulnerability in Mozilla Firefox caused by interleaved calls to document.write and appendChild. This module was written based on a live exploit found in the wild. This module requires Metasploit: https://metasploit.com/download Current source:...

CVE-2010-3769

The line-breaking implementation in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 on Windows does not properly handle long strings, which allows remote attackers to execute arbitrary code via a crafted...

Buffer overflow while line breaking after document.write with long string — Mozilla

Dirk Heinrich reported that on Windows platforms when document.write was called with a very long string a buffer overflow was caused in line breaking routines attempting to process the string for display. Such cases triggered an invalid read past the end of an array causing a crash which an...

Mozilla Firefox document.write and DOM insertion memory corruption

Added: 11/04/2010 CVE: CVE-2010-3765 BID: 44425 OSVDB: 68905 Background Firefox is a freely available web browser for multiple platforms including Windows, Linux, and Mac OS. Problem A memory corruption vulnerability allows command execution when a user loads a specially crafted web page containi...

Mozilla Firefox document.write and DOM insertion memory corruption

Added: 11/04/2010 CVE: CVE-2010-3765 BID: 44425 OSVDB: 68905 Background Firefox is a freely available web browser for multiple platforms including Windows, Linux, and Mac OS. Problem A memory corruption vulnerability allows command execution when a user loads a specially crafted web page containi...

Mozilla Firefox / Thunderbird / Seamonkey buffer overflow

Buffer overflow on document.write and DOM insertion is used in-the-wile for hidden malware installation...

Mozilla Foundation Security Advisory 2010-73

Mozilla Foundation Security Advisory 2010-73 Title: Heap buffer overflow mixing document.write and DOM insertion Impact: Critical Announced: October 27, 2010 Reporter: Morten Krkvik Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.6.12 Firefox 3.5.15 Thunderbird 3.1.6 Thunderbird...

Firefox 3.6.8 - 3.6.11 Interleaving document.write and appendChild

Exploit for windows platform in category remote exploits ================================================================== Firefox 3.6.8 - 3.6.11 Interleaving document.write and appendChild ==================================================================...

Mozilla Firefox 3.6.8 < 3.6.11 - Interleaving 'document.write' / 'appendChild' Remote Overflow

uccccuccccu0d00u0d0du0d00u102du1000u0d00u102du1000u102du1000u2853u1000u0011u0000u116cu1000u0300u7ffeub459u1002u6b99u1000ub333udeaduffffuffffu57a8u13e8u0000u0000u57a0u13e8u1000u0000u0040u0000u2853u1000u0001u0000u2853u1000u0000u0000u1af1u1000u9090u0febu7be4u1005u2a49u1000u2a49u1000u2a49u1000u2a49u1...

Firefox Interleaving document.write and appendChild Denial of Service

Exploit for windows platform in category dos / poc ===================================================================== Firefox Interleaving document.write and appendChild Denial of Service ===================================================================== Source:...

Mozilla Firefox 3.6.8 3.6.11 - Interleaving document.write appendChild Remote Overflow

Mozilla Firefox 3.6.8 3.6.11 - Interleaving document.write appendChild Remote Overflow...

Firefox Interleaving document.write and appendChild Denial of Service

No description provided by source. Source: https://bugzilla.mozilla.org/showbug.cgi?id=607222 htmlbody script function getattsstr var cobj=document.createElementstr; cobj.id="testcase"; document.body.appendChildcobj; var obj=document.getElementById"testcase"; var atts = new Array; forp in obj...

Mozilla Firefox - Interleaving document.write appendChild Denial of Service

Mozilla Firefox - Interleaving document.write appendChild Denial of Service Source: https://bugzilla.mozilla.org/showbug.cgi?id=607222 function getattsstr var cobj=document.createElementstr; cobj.id="testcase"; document.body.appendChildcobj; var obj=document.getElementById"testcase"; var atts = n...

Firefox < 3.5.15 Buffer Overflow

The installed version of Firefox is earlier than 3.5.15. Such versions are potentially affected by a heap-based buffer overflow vulnerability. The combination of DOM insertions and the handling of the JavaScript function 'document.write' exposes an error that can lead to a heap-based buffer...

Mozilla Firefox - Interleaving &#039;document.write&#039; / &#039;appendChild&#039; Denial of Service

Source: https://bugzilla.mozilla.org/showbug.cgi?id=607222 function getattsstr var cobj=document.createElementstr; cobj.id="testcase"; document.body.appendChildcobj; var obj=document.getElementById"testcase"; var atts = new Array; forp in obj iftypeofobjp=="string" atts.pushp;...

mozilla -- Heap buffer overflow mixing document.write and DOM insertion

The Mozilla Project reports: MFSA 2010-73 Heap buffer overflow mixing document.write and DOM insertion...

Mozilla Foundation Security Advisory 2010-65

Mozilla Foundation Security Advisory 2010-65 Title: Buffer overflow and memory corruption using document.write Impact: Critical Announced: October 19, 2010 Reporter: Alexander Miller Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.6.11 Firefox 3.5.14 Thunderbird 3.1.5 Thunderbird...

Buffer overflow and memory corruption using document.write — Mozilla

Security researcher Alexander Miller reported that passing an excessively long string to document.write could cause text rendering routines to end up in an inconsistent state with sections of stack memory being overwritten with the string data. An attacker could use this flaw to crash a victim's...