Hispasec Lab Blog

July 2008

Links

Hispasec Sistemas

Recent Entries

FireFox 2.0.0.11 and Opera 9.50 beta Remote Memory Information Leak(02/16 17:06)
Magellan Explorer 3.32 build 2305 Remote FTP Client Directory Traversal(09/06 20:02)
X-Diesel Unreal Commander v0.92 (build 573) multiple FTP-based vulnerabilities(09/06 19:49)
Total Commander 7.01 Remote FTP Client Directory Traversal(09/06 18:59)
Blizzard StarCraft Brood War 1.15.1 Remote DoS(08/29 14:22)
X-Diesel Unreal Commander v0.92 (build 573) multiple vulnerabilities(08/23 13:37)
Fileinfo 2.0.9 multiple vulnerabilities(08/20 21:54)

Recent Comments

Re: Blizzard StarCraft Brood War 1.15.1 Remote DoS(xpeh : 06/27 07:17)
Re: FireFox 2.0.0.11 and Opera 9.50 beta Remote Memory Information Leak(Vovan : 02/22 02:12)
Re: Blizzard StarCraft Brood War 1.15.1 Remote DoS(EWRWRRW : 11/22 22:45)
Re: Blizzard StarCraft Brood War 1.15.1 Remote DoS(luis : 10/06 03:17)
Re: Total Commander 7.01 Remote FTP Client Directory Traversal(ReWolf : 09/06 19:16)
Re: Blizzard StarCraft Brood War 1.15.1 Remote DoS(imba : 08/29 14:36)

Recent Trackbacks

Cuidado con el que copiais al portapapeles con Explorer(09/02 09:57)
Boletín 00023 - 16/08/2005(08/17 01:59)

Categories

VirusTotal (0 items)
Hispasec (0 items)
Phishing (0 items)
Hacking (0 items)
News (0 items)
Advisories (7 items)

Archives

February 2008
September 2007
August 2007

16

febrero
2008

FireFox 2.0.0.11 and Opera 9.50 beta Remote Memory Information Leak

Opera and FireFox contains vulnerable code for handling BMP files with partial palette. The code allows to craft a BMP file that leaks information from the heap. This information can be sent to remote server using canvas tag (HTML 5) and javascript.

See the demonstration video at:
http://blog.hispasec.com/lab/files/ff_2_0_0_11.avi (5.7mb, AVI, DivX 6.6.1)

Read more at:
/advisories/adv_Opera_and_Firefox_Remote_Memory_Information_Leak.txt

Sent by Gynvael Coldwind @ 17:06 | Permalink | Comments (1) | Trackbacks (0)

<< Magellan Explorer 3.32 build 2305 Remote FTP Client Directory Traversal | Principal |

Comentarios

Re: FireFox 2.0.0.11 and Opera 9.50 beta Remote Memory Information Leak

can a hacker get only Screenshot, or text data?

Posted by: Vovan at febrero 22,2008 02:12

Trackbacks

Please send trackbacks to: http://blog.hispasec.nospam/lab/236/tbZ3ping
Replace "nospam" with "com"

There are no trackbacks.

Post a comment

Creative Commons 2005-2006. HISPASEC SISTEMAS.