[Full-disclosure] MSIE7 browser entrapment vulnerability (probably Firefox, too)
Michal Zalewski
lcamtuf at dione.ids.pl
Fri Feb 23 08:17:39 GMT 2007
On Fri, 23 Feb 2007, Michal Zalewski wrote:
> http://lcamtuf.coredump.cx/ietrap/
I accidentally left a portion of code used to test for the Firefox memory
corruption / MSIE7 NULL ptr condition inside 'attack.js' for this page.
This crashed the testcase for some users, instead of demonstrating the
entrapment issue.
If you had this problem, please re-test now.
Cheers,
/mz
Full-Disclosure is hosted and sponsored by Secunia.