IE Shines On Broken Code , FireFox Mozilla Crahes

List overview All Threads
Download

newer

older

Desktop Linux -- A VB & Access...

Re: [ILUG-BOM] explanation of...

Sachin Rase

25 Oct 2004 25 Oct '04

10:08 a.m.

Check this artical

http://www.securityfocus.com/archive/1/378632/2004-10-15/2004-10-21/0

and try to see html files in "mangleme-1.2\gallery" directory of tar

--------------------- summary ------------------------ "To: BugTraq Subject: Web browsers - a mini-farce Date: Oct 18 2004 2:18PM Author: Michal Zalewski <lcamtuf ghettot org> Message-ID: 20041018123525.V88652@dekadens.coredump.cx

Good morning,

I wanted to file a vague report a couple of potentially exploitable vulnerabilities and DoS conditions in popular browsers, announce a useful web browser testing tool, and stir some controversy - all in one short post. Let me know how I doing.""

-- -- Sachin Rase GNU\Linux enthusiast 91-9819246569

Show replies by date

Nikhil Joshi

26 Oct 26 Oct

7:58 a.m.

On Mon, 25 Oct 2004, Sachin Rase wrote:

...

Check this artical

http://www.securityfocus.com/archive/1/378632/2004-10-15/2004-10-21/0

and try to see html files in "mangleme-1.2\gallery" directory of tar

Wow! this was surely an eye opener for me. Until now I had a (wrong) belief that links + Linux is the safest option to browse web-sites. I tried the html file in the directory and links went for a toss.

One thought: the exploits seem to target the memory handling techniques of the browsers. What if the browsers are written in Java? Well AFAIK Java lets programmers concentrate on the program at hand than the memory management part of it. Also Java browsers will be platform independent. Looking at Eclipse I feel that Java applications are on par with others in terms of speed.

-- If something is so complicated that you can't explain it in 10 seconds, then it's probably not worth knowing anyway. -- Calvin

Nosferatu!!!

3:57 p.m.

On Tue, Oct 26, 2004 at 07:58:41AM +0530, Nikhil Joshi wrote:

...

One thought: the exploits seem to target the memory handling techniques of the browsers. What if the browsers are written in Java? Well AFAIK Java lets programmers concentrate on the program at hand than the memory management part of it. Also Java browsers will be platform independent.

The only thing Java does different is garbage collection. So you don't have free() or "delete" in Java. But, I think badly written Java code will crash or do unexpected things.

...

Looking at Eclipse I feel that Java applications are on par with others in terms of speed.

Honestly, Java blows! I've not come across native compiled Java so I can't comment on that, though I have high hopes on it.

Nosferatu

-- +++++++++++++++++++++++++ A '49er walked into the saloon at Bloody Gulch. He'd been prospecting for more than a year. "Hey! Y'got any wimmen around here?" "Nope," the bartender replied, "But there's George in the back room." "I don't go for that kind of thing," the prospector scowled. He downed his drink and left disgustedly. A few months passed before the miner found his way down the mountain again. He stumbled into the tavern and asked the bartender, "Any wimmen pass through this part of town?" "Nope. Nary a one. But we still got George in the back room." Angry, the miner shouted, "I told you I don't go for that kind of thing," and turned on his heel and left. Within a year he came back from his mine again. With a wild look on his face he re-entered the saloon. Leaning over the bar he whispered to the bartender, "If I was to go into the back room with George, how many people 'round here would know?" "Oh," the bartender said, scratching his chin, "'bout seven, I guess." "Seven!?" "Yep. You, me, George, and the four men holdin' him down. You see, George don't go for that kind of thing neither." =================== || Signify v1.07 || =================== * http://www.debian.org/ * * http://www.debianplanet.org *

7327

Age (days ago)

7328

Last active (days ago)

linuxers@mm.ilug-bom.org.in

2 comments

3 participants

tags (0)

participants (3)

Nikhil Joshi
Nosferatu!!!
Sachin Rase