cross fuzz

No explicit questions like "how do I hack xxx.com" please!
Post Reply
User avatar
DNR
Digital Mercenary
Digital Mercenary
Posts: 6114
Joined: 24 Feb 2006, 17:00
18
Location: Michigan USA
Contact:

cross fuzz

Post by DNR »

http://lcamtuf.coredump.cx/cross_fuzz/

"Zalewski, who works for Google's security team, reports that he discovered the vulnerability a while ago using his cross_fuzz fuzzing tool and reported it to Microsoft in July 2010. Zalewski also used cross_fuzz to discover bugs in other browsers"
http://www.h-online.com/security/news/item/Security-tool-uncovers-multiple-bugs-in-every-browser-1162911.html

DNR
-
He gives wisdom to the wise and knowledge to the discerning. He reveals deep and hidden things; he knows what lies in Darkness, and Light dwells with him.

lonewolf
Fame ! Where are the chicks?!
Fame ! Where are the chicks?!
Posts: 185
Joined: 02 Dec 2010, 19:03
13

Re: cross fuzz

Post by lonewolf »

Lately I have been having problems with firefox so I have been starting it by the terminal. When I clicked on the link it does some strange things to firefox. However watching it scroll through the terminal is interesting. Here is a little from the terminal.

(firefox-bin:4447): Gdk-WARNING **: Native children wider or taller than 65535 pixels are not supported
*** registerContentHandler([object Text],,false)
*** registerProtocolHandler([object HTMLBodyElement],,[object BarProp])
*** registerContentHandler(function eval() {
[native code]
},0,[object Object])

(firefox-bin:4447): Gdk-WARNING **: Native children wider or taller than 65535 pixels are not supported
(firefox-bin:4447): Gdk-WARNING **: Native children wider or taller than 65535 pixels are not supported
*** registerContentHandler([object HTMLCollection],[object ClientRect],10)
*** registerProtocolHandler([object PluginArray],[object HTMLDocument],1000000)
*** registerContentHandler(true,[object Crypto],false)

(firefox-bin:4447): Gdk-WARNING **: Native children wider or taller than 65535 pixels are not supported
*** registerContentHandler([object HTMLCollection],pink,0.000001)
*** registerProtocolHandler(-1000000,[object HTMLCollection],[object HTMLCollection])
onStopListening called for active ServerSocket...
onStopListening called for active ServerSocket...
Network offline status changed: offline
NOTE: child process received `Goodbye', closing down

I love the terminal you can see everything behind the scene as it is happening.


Thanks for the information

User avatar
Artificial Interceptor
Fame ! Where are the chicks?!
Fame ! Where are the chicks?!
Posts: 122
Joined: 22 Nov 2010, 01:32
13
Location: Denmark
Contact:

Re: cross fuzz

Post by Artificial Interceptor »

(firefox-bin:4447): Gdk-WARNING **: Native children wider or taller than 65535 pixels are not supported
(firefox-bin:4447): Gdk-WARNING **: Native children wider or taller than 65535 pixels are not supported
Lol : Native Children NOT supported ... :lol:
Sincerly Artificial Interceptor [i]aka[/i] Plexrod
Music is Art!!.. Hacking is Art!!

User avatar
lykos
Fame ! Where are the chicks?!
Fame ! Where are the chicks?!
Posts: 120
Joined: 12 Dec 2010, 10:59
13

Re: cross fuzz

Post by lykos »

Interesting article DNR! *thumb* I sent this to my information assurance prof and he found it very interesting.


~[Lykos]~

Post Reply