Firefox 3.6 (XML parser) Memory Corruption PoC/DoS :

Date : 2010-01-24 Author : d3b4g
# Firefox 3.6(XML parser)memory corruption PoC/Dos
# by d3b4g 
# From tiny islands of maldivies
# Tested: version 3.6
# Tested on windows XP SP3
# 20-01-2010


This same bug was in early version of firfox,found by (Wojciech Pawlikowski) This is just a update.

This vulnerability  cause a denial of service (memory corruption) via an XML document composed of a long series of start-tags with no corresponding end-tags.

http://www.exploit-db.com/sploits/Firefox-v3.6_PoC.rar

C1

 

C2

 

C3