Another Safari Stack Overflow in JavaScriptCore.dll

By Mathias Karlsson
|
21/04/2010
|
Computer Security

Unhandled exception at 0x5cfa8947 in Safari.exe: 0xC00000FD: Stack overflow.

Unhandled exception at 0x5cfa8947 in Safari.exe: 0xC0000005: Access violation reading location 0x00170000.

Meh. Enough said. The exploit can be found here.

This code bypasses the "recursion security" in most known browsers and add multiple children elements to the html tag containing an iframe with a site that will call window.print(). In this case I used document.location because I am way too lazy to upload 2 files, in fact, I'll let Fredrik upload the single file.

Mathias Karlsson

Sup, I'm Mathias and I was born 1991. It feels like I should really write something here.

1 Comment

01/05/2010 @ 23:42
Tweets that mention Another Safari Stack Overflow in JavaScriptCore.dll -- Topsy.com says:

[...] This post was mentioned on Twitter by Kimberli. Kimberli said: Another Safari Stack Overflow in JavaScriptCore.dll http://tinyurl.com/2bklefd [...]

Leave a Comment

Categories
- .NET
- Classics
- Computer Security
- Critical
- Denial of Service
- Documentation
- Dreamhack
- Network Security
  - Nokitel
- News
- Nostalgia
- Pointless
- Social Engineering
- Theory
- Web Security
  - Facebook
  - Google
  - MySQL