Firefox IDN URL Domain Name Buffer Overflow
Tuesday, 13 September 2005 by Michel Roth
Tom Ferris has discovered a vulnerability in Firefox, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a user's system. The vulnerability is caused due to an error in the handling of an IDN URLs that contains the 0xAD character in its domain name. This can be exploited to cause a heap-based buffer overflow. Successful exploitation crashes Firefox and may allow code execution but requires that the user is tricked into visiting a malicious web site or open a specially crafted HTML file.

Read the advisory here.

Related Items:

VMware NAT Networking Buffer Overflow Vulnerability (21 December 2005)
0-Day Microsoft Excel Unspecified Code Execution Vulnerability (19 June 2006)
Internet Explorer "object" Tag Memory Corruption Code Execution (26 April 2006)
Citrix ICA Client ActiveX Control Heap Overflow Vulnerability (6 December 2006)
Microsoft Windows "itss.dll" Heap Corruption Unpatched Vulnerability (10 May 2006)
Trend Micro Products AntiVirus Library Buffer Overflow (27 February 2005)
F-Secure for Citrix Servers Critical Vulnerability (15 February 2005)
Warning: Microsoft Windows WMF Handling Arbitrary Code Execution - Exploit In the Wild (29 December 2005)
Citrix Metaframe XP Unspecified Buffer Overflow Vulnerability (23 December 2004)
Warning: 0-Day Microsoft XMLHTTP ActiveX Control Code Execution Vulnerability (6 November 2006)
Comments (0)add feed
Show/Hide comment formtoggle
password
 

busy