Openwall Project   /home  Owl  JtR  Pro  crypt  pam_passwdqc  tcb  phpass  scanlogd  popa3d  msulogin  /  Linux  BIND  /  advisories  presentations  /  services  donations  /  wordlists  passwords  /  news  community  lists  wiki  CVSweb  mirrors  signatures
bringing security into open environments
 
Password Recovery Resources on the Net
[<prev] [next>] [thread-next>] [month] [year] [list] 
Date: Fri, 3 Oct 2008 19:50:00 +0200
From: Nico Golde <nico@...lde.de>
To: oss-security@...ts.openwall.com
Cc: coley@...re.org
Subject: regarding CVE-2008-4382 & CVE-2008-4381

Hi,
I just had a look at CVE-2008-4382 which is the same issue 
as CVE-2008-4381 but just for conqueror should not get its 
own CVE id in my opinion.

We at Debian don't handle browser 
issues like this as security issues anyway but in this case 
looking at the PoC this would work in every browser 
supporting JavaScript as this is just a trivial memory 
consumption issue by passing a very large string too the 
alert function and thus eating memory, a simple 
while(true){} would be equally effective for eating cpu 
cycles which I wouldn't consider as a vulnerability 
either...

I verified this at least with firefox and opera.

Cheers
Nico

-- 
Nico Golde - http://www.ngolde.de - nion@...ber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.

[ CONTENT OF TYPE application/pgp-signature SKIPPED ]

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Hosted by DataForce ISP - Powered by Openwall GNU/*/Linux