Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1998_4

Bugtraq archives for 4th quarter (Oct-Dec) 1998: Remote CGI can crash Netscape 4.x

Remote CGI can crash Netscape 4.x

Jim Paris (jimJTAN.COM)
Mon, 5 Oct 1998 16:33:13 -0400

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Shivan Dragon: "Possible DoS in rsh"
Previous message: teun, Tilburg University: "Call for papers FIRST Brisbane June 1999"
Next in thread: Aleph One: "Re: Remote CGI can crash Netscape 4.x"

Netscape 4.x will crash when given a content-type of "internal/parser".
Earlier versions seem unaffected.  Tested versions are 4.05 and 4.5b1.
Under Win95 it simply hangs and needs a three finger salute to kill it.
It dies with a bus fault under Linux.  To test it, try
http://www.jtan.com/~jim/netscape-crash.cgi , which contains

#!/bin/sh
echo Content-type: internal/parser
echo
echo If you can see this, your browser is OK!

It may be possible to do worse than crash a browser.  If this data is
going to the same place that parsed pages go, I would imagine that
buffer overflows are present.

I submitted a bug report to Netscape.

-jim

Next message: Shivan Dragon: "Possible DoS in rsh"
Previous message: teun, Tilburg University: "Call for papers FIRST Brisbane June 1999"
Next in thread: Aleph One: "Re: Remote CGI can crash Netscape 4.x"