[prev in list] [next in list] [prev in thread] [next in thread] 

List:       full-disclosure
Subject:    [Full-disclosure] Firefox Remote Compromise Leaked
From:       tuytumadre () att ! net
Date:       2005-05-08 5:49:12
Message-ID: 050820050549.26165.427DA858000481550000663521602807410A9D0B0E039A9B979A9B () att ! net
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


Well, apparently one of my Firefox vulnerabilities has been leaked. Mikx and I have \
been working on Firefox security for some time and we are trying to put together \
something spectacular, but unfortunatly there are always those people out there that \
feel they need to ruin it for people. About a week ago, Mikx and I put together a \
nice remote compromise for Firefox, submitted it to bugzilla, and got a bug number \
for it. This is the message that I just got from Bugzilla:  
bugzilla-daemon@mozilla.org to me 12:14 am (1 hour ago)
https://bugzilla.mozilla.org/show_bug.cgi?id=292691
brendan@mozilla.org changed:
          What    |Removed                     |Added
----------------------------------------------------------------------------
                CC|                            |bugs@bengoodger.com,
                  |                            |vladimir@pobox.com,
                  |                            |shaver@mozilla.org,
                  |                            |brendan@mozilla.org,
                  |                            |chofmann@gmail.com
------- Additional Comments From brendan@mozilla.org  2005-05-07 21:14 PDT -------
So now someone is claiming a 0day that looks a lot like this.  See bug 293302.

So apparently, the secret is out. I wish that this could have been used for good \
purposes but I guess that just isn't possible these days...

Here is the original PoC:
http://greyhatsecurity.org/vulntests/ffrc.htm

I suspect that my server was compromised, and I am currently using my contacts to \
find the culprit and bring him to justice.

Sorry to Mozilla, Mikx, and everyone else that was harmed by the inconsiderate, \
irresponsible actions of an individual.

Regards,
Paul


[Attachment #5 (text/html)]

<html>
<!-- BEGIN WEBMAIL STATIONERY -->
<head></head>
<body>
<!-- WEBMAIL STATIONERY noneset -->
<P>Well, apparently one of my Firefox vulnerabilities has been leaked. Mikx and I \
have been working on Firefox security for some time and we are trying to put together \
something spectacular, but unfortunatly there are always those people out there that \
feel they need to ruin it for people. About a week ago, Mikx and I put together a \
nice remote compromise for Firefox, submitted it to bugzilla, and got a bug number \
for it. This is the message that I just got from Bugzilla:</P> <P>&nbsp;&nbsp;<BR><A \
href="mailto:bugzilla-daemon@mozilla.org">bugzilla-daemon@mozilla.org</A> to me 12:14 \
am (1 hour ago)<BR><A \
href="https://bugzilla.mozilla.org/show_bug.cgi?id=292691">https://bugzilla.mozilla.org/show_bug.cgi?id=292691</A></P>
 <P><A href="mailto:brendan@mozilla.org">brendan@mozilla.org</A> changed:</P>
<P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; What&nbsp;&nbsp;&nbsp; \
|Removed&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
|Added<BR>---------------------------------------------------------------------------- \
<BR>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
CC|&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
<A href="mailto:|bugs@bengoodger.com">|bugs@bengoodger.com</A>,<BR>&nbsp;&nbsp;&nbsp;& \
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
|&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
<A href="mailto:|vladimir@pobox.com">|vladimir@pobox.com</A>,<BR>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs
  p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
|&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
<A href="mailto:|shaver@mozilla.org">|shaver@mozilla.org</A>,<BR>&nbsp;&nbsp;&nbsp;&nb \
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
|&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
<A href="mailto:|brendan@mozilla.org">|brendan@mozilla.org</A>,<BR>&nbsp;&nbsp;&nbsp;& \
nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
|&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; \
<A href="mailto:|chofmann@gmail.com">|chofmann@gmail.com</A></P> <P>------- \
Additional Comments From <A \
href="mailto:brendan@mozilla.org">brendan@mozilla.org</A>&nbsp; 2005-05-07 21:14 PDT \
-------<BR>So now someone is claiming a 0day that looks a lot like this.&nbsp; See \
bug 293302.</P> <P><BR>So apparently, the secret is out. I wish that this could have \
been used for good purposes but I guess that just isn't possible these days...</P> \
<P>&nbsp;</P> <P>Here is the original PoC:<BR><A \
href="http://greyhatsecurity.org/vulntests/ffrc.htm">http://greyhatsecurity.org/vulntests/ffrc.htm</A></P>
 <P>&nbsp;</P>
<P>I suspect that my server was compromised, and I am currently using my contacts to \
find the culprit and bring him to justice.</P> <P>&nbsp;</P>
<P>Sorry to Mozilla, Mikx, and everyone else that was harmed by the inconsiderate, \
irresponsible actions of an individual.</P> <P>&nbsp;</P>
<P>Regards,<BR>Paul</P>
<!-- END WEBMAIL STATIONERY -->

</body>
</html>



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[prev in list] [next in list] [prev in thread] [next in thread] 

Configure | About | News | Add a list | Sponsored by KoreLogic