Dailydave mailing list archives

Re: Firefox bugs

From: H D Moore <hdm-daily-dave () digitaloffense net>
Date: Tue, 3 Oct 2006 12:48:10 -0500

On Tuesday 03 October 2006 12:21, Dave Aitel wrote:

Right, where one of the dude's claim it's all a joke and that his
blackhat friend weev hasn't shown him the bug. Seemed like blatant
lieing because his company pressured him. A weblog company can't be
known to have remote 0day on browsers...no one would ever visit their
web page again...


If anyone wants the full (reported) bug list, grab this hack:

http://metasploit.com/users/hdm/tools/mozdig.rb

$ ./mozdig.rb
[..snip..]
Bug #351370 by jst () mozilla jstenback com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/js/src/xpconnect/src&command=DIFF_FRAMESET&file=xpccomponents.cpp&rev1=1.99&rev2=1.100&root=/cvsroot
Bug #348798 by mattwillis () gmail com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/calendar/base/src&command=DIFF_FRAMESET&file=calUtils.js&rev1=1.4&rev2=1.5&root=/cvsroot
Bug #353165 by igor.bukanov () gmail com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/js/src&command=DIFF_FRAMESET&file=jsxml.c&rev1=3.125&rev2=3.126&root=/cvsroot
Bug #352064 by pedemont () us ibm com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/js/src/liveconnect&command=DIFF_FRAMESET&file=jsj_JavaObject.c&rev1=1.40&rev2=1.41&root=/cvsroot
Bug #352846 by igor.bukanov () gmail com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/js/src&command=DIFF_FRAMESET&file=jsarray.c&rev1=3.96&rev2=3.97&root=/cvsroot
Bug #353117 by mozilla.mano () sent com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/browser/components/feeds/src&command=DIFF_FRAMESET&file=FeedWriter.js&rev1=1.18&rev2=1.19&root=/cvsroot
Bug #348836 by brendan () mozilla org at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/js/src&command=DIFF_FRAMESET&file=jsscan.c&rev1=3.111&rev2=3.112&root=/cvsroot
Bug #352624 by brendan () mozilla org at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/js/src&command=DIFF_FRAMESET&file=jsinterp.c&rev1=3.288&rev2=3.289&root=/cvsroot
Bug #352878 by wclouser () mozilla com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/webtools/firefox_survey/views/users&command=DIFF_FRAMESET&file=add.thtml&rev1=1.14&rev2=1.15&root=/cvsroot
Bug #352124 by gavin () gavinsharp com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/js/src/xpconnect/src&command=DIFF_FRAMESET&file=XPCNativeWrapper.cpp&rev1=1.45&rev2=1.46&root=/cvsroot
Bug #352124 by jst () mozilla jstenback com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/js/src/xpconnect/src&command=DIFF_FRAMESET&file=xpcconvert.cpp&rev1=1.105&rev2=1.106&root=/cvsroot
Bug #352124 by mozilla.mano () sent com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/browser/components/feeds/src&command=DIFF_FRAMESET&file=FeedWriter.js&rev1=1.15&rev2=1.16&root=/cvsroot
Bug #352606 by brendan () mozilla org at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/js/src&command=DIFF_FRAMESET&file=jsinterp.c&rev1=3.287&rev2=3.288&root=/cvsroot
Bug #347008 by bugzilla () standard8 demon co uk at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/mailnews/addrbook/src&command=DIFF_FRAMESET&file=nsAddrDatabase.cpp&rev1=1.145&rev2=1.146&root=/cvsroot
Bug #348304 by Olli.Pettay () helsinki fi at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/layout/xul/base/src&command=DIFF_FRAMESET&file=nsMenuFrame.cpp&rev1=1.332&rev2=1.333&root=/cvsroot
Bug #307809 by dbaron () dbaron org at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/layout/xul/base/src/grid&command=DIFF_FRAMESET&file=nsGridRowLayout.cpp&rev1=1.11&rev2=1.12&root=/cvsroot
Bug #352264 by dbaron () dbaron org at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/xpfe/bootstrap&command=DIFF_FRAMESET&file=nsNativeAppSupportWin.cpp&rev1=1.133&rev2=1.134&root=/cvsroot
Bug #351848 by wtchang () redhat com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/security/nss/lib/cryptohi&command=DIFF_FRAMESET&file=secvfy.c&rev1=1.19&rev2=1.20&root=/cvsroot
Bug #348304 by Olli.Pettay () helsinki fi at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/layout/xul/base/src&command=DIFF_FRAMESET&file=nsMenuFrame.cpp&rev1=1.331&rev2=1.332&root=/cvsroot
Bug #352271 by mrbkap () gmail com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/js/src&command=DIFF_FRAMESET&file=jsparse.c&rev1=3.241&rev2=3.242&root=/cvsroot
Bug #352094 by mrbkap () gmail com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/js/src&command=DIFF_FRAMESET&file=jsinterp.c&rev1=3.284&rev2=3.285&root=/cvsroot
Bug #351296 by vladimir () pobox com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/content/canvas/src&command=DIFF_FRAMESET&file=nsCanvasRenderingContext2D.cpp&rev1=1.66&rev2=1.67&root=/cvsroot
Bug #351328 by bmlk () gmx de at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/layout/tables&command=DIFF_FRAMESET&file=nsCellMap.cpp&rev1=3.107&rev2=3.108&root=/cvsroot
Bug #337744 by benjamin () smedbergs us at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/netwerk/protocol/res/src&command=DIFF_FRAMESET&file=nsResProtocolHandler.cpp&rev1=1.66&rev2=1.67&root=/cvsroot
Bug #351973 by igor.bukanov () gmail com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/js/src&command=DIFF_FRAMESET&file=jsobj.c&rev1=3.285&rev2=3.286&root=/cvsroot
Bug #351470 by alexei.volkov.bugs () sun com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/nsprpub/pr/src/io&command=DIFF_FRAMESET&file=prfdcach.c&rev1=3.12&rev2=3.13&root=/cvsroot
Bug #351470 by alexei.volkov.bugs () sun com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/nsprpub/pr/src/io&command=DIFF_FRAMESET&file=prlog.c&rev1=3.34&rev2=3.35&root=/cvsroot
Bug #351470 by alexei.volkov.bugs () sun com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/nsprpub/pr/src/misc&command=DIFF_FRAMESET&file=prtrace.c&rev1=3.8&rev2=3.9&root=/cvsroot
Bug #348304 by Olli.Pettay () helsinki fi at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/layout/xul/base/src&command=DIFF_FRAMESET&file=nsMenuFrame.cpp&rev1=1.330&rev2=1.331&root=/cvsroot
Bug #348304 by Olli.Pettay () helsinki fi at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/layout/xul/base/src&command=DIFF_FRAMESET&file=nsMenuFrame.cpp&rev1=1.329&rev2=1.330&root=/cvsroot
Bug #350238 by brendan () mozilla org at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/js/src&command=DIFF_FRAMESET&file=jsemit.c&rev1=3.196&rev2=3.197&root=/cvsroot
Bug #332386 by pavlov () pavlov net at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/modules/libpr0n/decoders/bmp&command=DIFF_FRAMESET&file=nsBMPDecoder.cpp&rev1=1.30&rev2=1.31&root=/cvsroot
Bug #351079 by nelson () bolyard com at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/security/nss/lib/cryptohi&command=DIFF_FRAMESET&file=secvfy.c&rev1=1.18&rev2=1.19&root=/cvsroot
Bug #348304 by Olli.Pettay () helsinki fi at 
http://bonsai.mozilla.org/cvsview2.cgi?diff_mode=context&whitespace_mode=show&subdir=mozilla/layout/xul/base/src/tree/src&command=DIFF_FRAMESET&file=nsTreeBodyFrame.cpp&rev1=1.287&rev2=1.288&root=/cvsroot

There are enough unpatched (as in releases) bugs viewable in CVS to make the threat of new flaws somewhat redundant :-)

-HD
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

Current thread:

Firefox bugs Dave Aitel (Oct 03)
- Re: Firefox bugs Thor Larholm (Oct 03)
  - Re: Firefox bugs Dave Aitel (Oct 03)
    - Re: Firefox bugs security curmudgeon (Oct 03)
    - Re: Firefox bugs Dave Aitel (Oct 03)
    - Re: Firefox bugs H D Moore (Oct 03)
    - Re: Firefox bugs Thor Larholm (Oct 03)
  - Re: Firefox bugs Matt (Oct 03)
- Re: Firefox bugs Alexander Sotirov (Oct 03)
  - Re: Firefox bugs Dave Aitel (Oct 03)
    - Re: Firefox bugs endrazine (Oct 03)
    - Re: Firefox bugs [iRant] Bas Alberts (Oct 03)
    - Re: Firefox bugs [iRant] Jared DeMott (Oct 04)
    - Re: Firefox bugs Rob Lemos (Oct 04)
    - Re: Firefox bugs James (njan) Eaton-Lee (Oct 04)
    - Re: Firefox bugs Jared DeMott (Oct 04)

(Thread continues...)