-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Scott wrote:
> There is a known exploit available that will crash Firefox 1.5. 
It appears to be a bug, and not an exploit. It made my browser hang, but not
close completely.

Packetstorm calls it a DOS proof of concept, which is a completely different
animal than an exploit.

> I have
> tested it on several of my own systems.  I found it up on
> packetstormsecurity.org the other day, and here is the link:
> 
> http://packetstormsecurity.org/0606-exploits/moz1504.txt
> 
> So probably there are people embedding this into their sites either on
> purpose or through plain coding coincidence.
> 
I doubt it. This one really isn't worth the bother. There are too many other ways
to intentionally hang a web browser, and nothing to be gained unless you could
inject some shell code with it.

Let me know when you find it "out in the wild."

Cheers,
- --
KevinO
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFEiegCI3MJ/OwKti0RApylAJ9qBZuo8Ljd1R+W1amZWeTCg895XwCfRWe+
46bLjFe8s+/pZCRww47nugA=
=C+YV
-----END PGP SIGNATURE-----
---------------------------------------------------
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change  you mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss