1995-09-22 - Re: Another Netscape Bug (and possible security hole)

Header Data

From: Laurent Demailly <dl@hplyot.obspm.fr>
To: Ray Cromwell <rjc@clark.net>
Message Hash: 6b45f63609687041fcfd430ec81fb69596b838d8e78ea552b5522b0e0fdcd478
Message ID: <9509221014.AA18627@hplyot.obspm.fr>
Reply To: <199509220612.CAA11441@clark.net>
UTC Datetime: 1995-09-22 10:15:46 UTC
Raw Date: Fri, 22 Sep 95 03:15:46 PDT

Raw message

From: Laurent Demailly <dl@hplyot.obspm.fr>
Date: Fri, 22 Sep 95 03:15:46 PDT
To: Ray Cromwell <rjc@clark.net>
Subject: Re: Another Netscape Bug (and possible security hole)
In-Reply-To: <199509220612.CAA11441@clark.net>
Message-ID: <9509221014.AA18627@hplyot.obspm.fr>
MIME-Version: 1.0
Content-Type: text/plain


Ray Cromwell writes:
 > 
 > I've found a Netscape bug which I suspect is a buffer overflow and
 > may have the potential for serious damage. If it is an overflow bug,
 > then it may be possible to infect every computer which accesses a web
 > page with Netscape. To see the bug, create an html file containing
 > the following:
[...]
The sortest host length I've found to cause seg fault is 356 (yes, and
not 256, 256+100 if you prefer :))
You can have a look at http://hplyot.obspm.fr/~dl/netscapesec/ for a
'demo' (click to crash)


dl
--
Laurent Demailly * http://hplyot.obspm.fr/~dl/ * Linux|PGP|Gnu|Tcl|...  Freedom
Prime#1: cent cinq mille cent cinq milliards cent cinq mille cent soixante sept

Legion of Doom SEAL Team 6 Cocaine class struggle AK-47 jihad
fissionable

Thread

• Return to September 1995

• Return to “David Lesher <wb8foz@nrk.com>”
• Return to “Duncan Frissell <frissell@panix.com>”
• Return to “futplex@pseudonym.com (Futplex)”
• Return to “heesen@zpr.uni-koeln.de (Rainer Heesen)”
• Return to “jsw@neon.netscape.com (Jeff Weinstein)”
• Return to “Laurent Demailly <dl@hplyot.obspm.fr>”
• Return to ““Perry E. Metzger” <perry@piermont.com>”
• Return to “Ray Cromwell <rjc@clark.net>”

• Return to “sameer <sameer@c2.org>”

• 1995-09-22 (Thu, 21 Sep 95 23:12:30 PDT) - Another Netscape Bug (and possible security hole) - Ray Cromwell <rjc@clark.net>
  • 1995-09-22 (Thu, 21 Sep 95 23:52:42 PDT) - Re: Another Netscape Bug (and possible security hole) - futplex@pseudonym.com (Futplex)
    • 1995-09-22 (Fri, 22 Sep 95 00:15:47 PDT) - Re: Another Netscape Bug (and possible security hole) - Ray Cromwell <rjc@clark.net>
      • 1995-09-22 (Fri, 22 Sep 95 01:14:47 PDT) - Re: Another Netscape Bug (and possible security hole) - futplex@pseudonym.com (Futplex)
        • 1995-09-22 (Fri, 22 Sep 95 01:30:13 PDT) - YET ANOTHER BAD NETSCAPE HOLE! - Ray Cromwell <rjc@clark.net>
          • 1995-09-22 (Fri, 22 Sep 95 01:37:09 PDT) - Re: YET ANOTHER BAD NETSCAPE HOLE! - Ray Cromwell <rjc@clark.net>
          • 1995-09-22 (Fri, 22 Sep 95 01:50:22 PDT) - Re: YET ANOTHER BAD NETSCAPE HOLE! - futplex@pseudonym.com (Futplex)
            • 1995-09-22 (Fri, 22 Sep 95 02:46:54 PDT) - Re: YET ANOTHER BAD NETSCAPE HOLE! - heesen@zpr.uni-koeln.de (Rainer Heesen)
          • 1995-09-22 (Fri, 22 Sep 95 02:29:06 PDT) - Re: YET ANOTHER BAD NETSCAPE HOLE! - jsw@neon.netscape.com (Jeff Weinstein)
            • 1995-09-22 (Fri, 22 Sep 95 02:36:12 PDT) - Re: YET ANOTHER BAD NETSCAPE HOLE! - Ray Cromwell <rjc@clark.net>
          • 1995-09-22 (Fri, 22 Sep 95 05:48:01 PDT) - Re: YET ANOTHER BAD NETSCAPE HOLE! - “Perry E. Metzger” <perry@piermont.com>
        • 1995-09-26 (Tue, 26 Sep 95 05:58:03 PDT) - Re: Another Netscape Bug (and possible security hole) - David Lesher <wb8foz@nrk.com>
      • 1995-09-22 (Fri, 22 Sep 95 05:36:15 PDT) - Re: Another Netscape Bug (and possible security hole) - “Perry E. Metzger” <perry@piermont.com>
        • 1995-09-22 (Fri, 22 Sep 95 07:39:36 PDT) - Re: Another Netscape Bug (and possible security hole) - sameer <sameer@c2.org>
        • 1995-09-22 (Fri, 22 Sep 95 10:14:04 PDT) - Re: Another Netscape Bug (and possible security hole) - Ray Cromwell <rjc@clark.net>
          • 1995-09-22 (Fri, 22 Sep 95 11:28:44 PDT) - Re: Another Netscape Bug (and possible security hole) - sameer <sameer@c2.org>
        • 1995-09-25 (Mon, 25 Sep 95 13:47:57 PDT) - Re: Another Netscape Bug (and possible security hole) - Laurent Demailly <dl@hplyot.obspm.fr>
          • 1995-09-26 (Tue, 26 Sep 95 05:02:10 PDT) - Re: Another Netscape Bug (and possible security hole) - Duncan Frissell <frissell@panix.com>
  • 1995-09-22 (Fri, 22 Sep 95 00:34:29 PDT) - Re: Another Netscape Bug (and possible security hole) - jsw@neon.netscape.com (Jeff Weinstein)
  • 1995-09-22 (Fri, 22 Sep 95 03:15:46 PDT) - Re: Another Netscape Bug (and possible security hole) - Laurent Demailly <dl@hplyot.obspm.fr>
  • 1995-09-22 (Fri, 22 Sep 95 05:25:00 PDT) - Re: Another Netscape Bug (and possible security hole) - “Perry E. Metzger” <perry@piermont.com>