- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 24597
- Проверка EDB
-
- Пройдено
- Автор
- MATS PALMGREN & GAEL DELALLEAU
- Тип уязвимости
- DOS
- Платформа
- MULTIPLE
- CVE
- N/A
- Дата публикации
- 2004-09-14
Mozilla Browser 1.7.x - Non-ASCII Hostname Heap Overflow
Код:
source: https://www.securityfocus.com/bid/11169/info
Mozilla is prone to a remotely exploitable heap overflow that is exposed when the browser handles non-ASCII characters in URIs.
This issue could be exploited by enticing a user to open a hyperlink that references a malicious URI. Successful exploitation will allow execution of arbitrary code in the context of the client user.
http://é------------------------------------------------aaaabbbb-----/
http://é------------------------------------------------þßý-----/
http://é------------------------------------------------aaaa$ðý-----/- Источник
- www.exploit-db.com
