Firefox 3.6 (XML parser) Memory Corruption PoC/DoS

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Firefox 3.6 (XML parser) Memory Corruption PoC/DoS
# Published : 2010-01-24
# Author : d3b4g
# Previous Title : KOL Wave Player 1.0 (.wav) Local Buffer Overflow PoC
# Next Title : Opera 10.10 (XML parser) Denial of Service PoC

# Firefox 3.6(XML parser)memory corruption PoC/Dos
# by d3b4g 
# From tiny islands of maldivies
# Tested: version 3.6
# Tested on windows XP SP3
# 20-01-2010


This same bug was in early version of firfox,found by (Wojciech Pawlikowski) This is just a update.

This vulnerability  cause a denial of service (memory corruption) via an XML document composed of a long series of start-tags with no corresponding end-tags.

http://www.exploit-db.com/sploits/Firefox-v3.6_PoC.rar