[prev in list] [next in list] [prev in thread] [next in thread]
List: full-disclosure
Subject: [Full-disclosure] Firefox Remote Compromise Leaked
From: tuytumadre () att ! net
Date: 2005-05-08 5:49:12
Message-ID: 050820050549.26165.427DA858000481550000663521602807410A9D0B0E039A9B979A9B () att ! net
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
Well, apparently one of my Firefox vulnerabilities has been leaked. Mikx and I have \
been working on Firefox security for some time and we are trying to put together \
something spectacular, but unfortunatly there are always those people out there that \
feel they need to ruin it for people. About a week ago, Mikx and I put together a \
nice remote compromise for Firefox, submitted it to bugzilla, and got a bug number \
for it. This is the message that I just got from Bugzilla:
bugzilla-daemon@mozilla.org to me 12:14 am (1 hour ago)
https://bugzilla.mozilla.org/show_bug.cgi?id=292691
brendan@mozilla.org changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |bugs@bengoodger.com,
| |vladimir@pobox.com,
| |shaver@mozilla.org,
| |brendan@mozilla.org,
| |chofmann@gmail.com
------- Additional Comments From brendan@mozilla.org 2005-05-07 21:14 PDT -------
So now someone is claiming a 0day that looks a lot like this. See bug 293302.
So apparently, the secret is out. I wish that this could have been used for good \
purposes but I guess that just isn't possible these days...
Here is the original PoC:
http://greyhatsecurity.org/vulntests/ffrc.htm
I suspect that my server was compromised, and I am currently using my contacts to \
find the culprit and bring him to justice.
Sorry to Mozilla, Mikx, and everyone else that was harmed by the inconsiderate, \
irresponsible actions of an individual.
Regards,
Paul
[Attachment #5 (text/html)]
<html>
<!-- BEGIN WEBMAIL STATIONERY -->
<head></head>
<body>
<!-- WEBMAIL STATIONERY noneset -->
<P>Well, apparently one of my Firefox vulnerabilities has been leaked. Mikx and I \
have been working on Firefox security for some time and we are trying to put together \
something spectacular, but unfortunatly there are always those people out there that \
feel they need to ruin it for people. About a week ago, Mikx and I put together a \
nice remote compromise for Firefox, submitted it to bugzilla, and got a bug number \
for it. This is the message that I just got from Bugzilla:</P> <P> <BR><A \
href="mailto:bugzilla-daemon@mozilla.org">bugzilla-daemon@mozilla.org</A> to me 12:14 \
am (1 hour ago)<BR><A \
href="https://bugzilla.mozilla.org/show_bug.cgi?id=292691">https://bugzilla.mozilla.org/show_bug.cgi?id=292691</A></P>
<P><A href="mailto:brendan@mozilla.org">brendan@mozilla.org</A> changed:</P>
<P> What \
|Removed \
|Added<BR>---------------------------------------------------------------------------- \
<BR> \
CC| \
<A href="mailto:|bugs@bengoodger.com">|bugs@bengoodger.com</A>,<BR> & \
nbsp; \
| \
<A href="mailto:|vladimir@pobox.com">|vladimir@pobox.com</A>,<BR> &nbs
p; \
| \
<A href="mailto:|shaver@mozilla.org">|shaver@mozilla.org</A>,<BR> &nb \
sp; \
| \
<A href="mailto:|brendan@mozilla.org">|brendan@mozilla.org</A>,<BR> & \
nbsp; \
| \
<A href="mailto:|chofmann@gmail.com">|chofmann@gmail.com</A></P> <P>------- \
Additional Comments From <A \
href="mailto:brendan@mozilla.org">brendan@mozilla.org</A> 2005-05-07 21:14 PDT \
-------<BR>So now someone is claiming a 0day that looks a lot like this. See \
bug 293302.</P> <P><BR>So apparently, the secret is out. I wish that this could have \
been used for good purposes but I guess that just isn't possible these days...</P> \
<P> </P> <P>Here is the original PoC:<BR><A \
href="http://greyhatsecurity.org/vulntests/ffrc.htm">http://greyhatsecurity.org/vulntests/ffrc.htm</A></P>
<P> </P>
<P>I suspect that my server was compromised, and I am currently using my contacts to \
find the culprit and bring him to justice.</P> <P> </P>
<P>Sorry to Mozilla, Mikx, and everyone else that was harmed by the inconsiderate, \
irresponsible actions of an individual.</P> <P> </P>
<P>Regards,<BR>Paul</P>
<!-- END WEBMAIL STATIONERY -->
</body>
</html>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic