Thierry Zoller

13 exploits Active since May 2009
CVE-2009-1692 EXPLOITDB text WRITEUP
iPhone OS 1.0-2.2.1 and iPod touch 1.1-2.2.1 - Denial of Service via HTMLSelectElement Length Attribute
WebKit before r41741, as used in Apple iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Safari, and other software, allows remote attackers to cause a denial of service (memory consumption or device reset) via a web page containing an HTMLSelectElement object with a large length attribute, related to the length property of a Select object.
CVE-2009-2542 EXPLOITDB text WRITEUP
Netscape Navigator - Denial of Service via Select Object Length Property
Netscape 6 and 8 allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
CVE-2009-2541 EXPLOITDB HIGH text WRITEUP
Sony PLAYSTATION 3 - Denial of Service via Large Select Object Length Property
The web browser on the Sony PLAYSTATION 3 (PS3) allows remote attackers to cause a denial of service (memory consumption and console hang) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
CVSS 7.5
CVE-2009-2540 EXPLOITDB text WRITEUP
Opera < 9.64 - Denial of Service via Large Select Object Length Property
Opera, possibly 9.64 and earlier, allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
CVE-2009-2539 EXPLOITDB text WRITEUP
aigo_md_p8860 - Denial of Service via Large Select Object Length Property
The Aigo P8860 allows remote attackers to cause a denial of service (memory consumption and browser hang) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
CVE-2009-2538 EXPLOITDB text WRITEUP
Nokia Symbian OS 9.2 - Denial of Service via Large Select Object Length Property
The Nokia N95 running Symbian OS 9.2, N82, and N810 Internet Tablet allow remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
CVE-2009-2537 EXPLOITDB text WRITEUP
KDE Konqueror - Denial of Service via Large Select Object Length Property
KDE Konqueror allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
CVE-2009-2536 EXPLOITDB text WRITEUP
Microsoft Internet Explorer <9 - DoS
Microsoft Internet Explorer 5 through 8 allows remote attackers to cause a denial of service (memory consumption and application crash) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
EIP-2026-103410 EXPLOITDB html WORKING POC
Apple QuickTime 7.4.1 - Null Pointer Dereference Denial of Service
CVE-2009-2535 EXPLOITDB text WRITEUP
Mozilla Firefox <2.0.0.19 & 3.x <3.0.5 - DoS
Mozilla Firefox before 2.0.0.19 and 3.x before 3.0.5, SeaMonkey, and Thunderbird allow remote attackers to cause a denial of service (memory consumption and application crash) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
CVE-2009-1828 EXPLOITDB text WORKING POC
Firefox - Denial of Service via KEYGEN Element with Automatic Refresh
Mozilla Firefox 3.0.10 allows remote attackers to cause a denial of service (infinite loop, application hang, and memory consumption) via a KEYGEN element in conjunction with (1) a META element specifying automatic page refresh or (2) a JavaScript onLoad event handler for a BODY element. NOTE: it was later reported that earlier versions are also affected.
CVE-2009-1827 EXPLOITDB html WORKING POC
Firefox 3.0.4 - Denial of Service via SVG Circle Element Radius Attribute
The SVG component in Mozilla Firefox 3.0.4 allows remote attackers to cause a denial of service (application hang) via a large value in the r (aka Radius) attribute of a circle element, related to an "unclamped loop."
EIP-2026-103412 EXPLOITDB text WORKING POC
Apple Safari / QuickTime - Denial of Service