Potential Security Issue: Visiting website gets 9.0.1 Firefox to crash on each visit

RESOLVED WORKSFORME

Status

Plugins Graveyard
Java (Oracle)
RESOLVED WORKSFORME
6 years ago
2 years ago

People

(Reporter: Ken Belva, Unassigned)

Tracking

({sec-vector})

Details

(Whiteboard: [sg:vector (java)])

Attachments

(1 attachment)

(Reporter)

Description

6 years ago
User Agent: Mozilla/5.0 (Windows NT 5.1; rv:9.0.1) Gecko/20100101 Firefox/9.0.1
Build ID: 20111220165912

Steps to reproduce:

From URL:
http://www.academybus.com/Casinos.aspx

I clicked Purchase tickets, which linked to this URL:
http://direct.academybus.com/testarea/ticketsales


Actual results:

Firefox crashed completely. Happens each time I go. My guess is that this has the potential to be a buffer overflow as I have not seen such a hard crash in a long time. My apologies for not being able to debug this further to determine which component in which this happens.


Expected results:

Visited website.

Comment 1

6 years ago
Please include your crash id if you sent in a crash report. See https://developer.mozilla.org/En/How_to_get_a_stacktrace_for_a_bug_report for more information. The page uses Java so please check http://www.mozilla.org/en-US/plugincheck/ to see if you have an up to date version of Java. If not, please update.
(Reporter)

Comment 2

6 years ago
Bob,

The browser does not create a crash report for this issue after the bug effects firefox. I checked about:crashes.

I'll need to load on WinDBG. Unfortunately I am at my office and cannot spend the time to do the debugging. All plugins are up to date. I've attached a screen print.

Let me know if there is something high level I can do to help. 

Ken
(Reporter)

Comment 3

6 years ago
Created attachment 583791 [details]
up to date plugins
(Reporter)

Comment 4

6 years ago
bp-a6e72f1a-435e-45c6-ade4-20a3c2111222
Ken: Your report indicates your are crashing in Quicktime. Also you have some extensions - does the crash still happen in safe mode?
(Reporter)

Comment 6

6 years ago
yes, i then disabled the quicktime plug-in and it still crashes. it does not give me any other crash report. I'll see if i can get a set of screen captures.
(Reporter)

Comment 7

6 years ago
I have the video but apparently it is too large to upload. Will upload and provide a URL tonight when I return from work. I normally wouldn't bother with this but it's such a hard crash that is not captured by the crash reporting utility.
(Reporter)

Comment 8

6 years ago
I can confirm that it is the following plugin:

Java (TM) Platform SE 6 U30 6.0.300.12
Next Generation Java Plug-in 1.6.0_30 for Mozilla Browsers

Methodology:
Disabled all plugins and ad-ons. Crashed when only this one was enabled. It's a hard crash.

Hope that helps.
Component: Security → Java (Oracle)
Product: Firefox → Plugins
QA Contact: firefox → oracle-java
Version: 9 Branch → unspecified
Josh: please CC any Oracle/Java contacts you have on this bug.
Whiteboard: [sg:vector (java)]
There is a newer version of Java, update 31, that may have fixed this bug. Small chance, but if this was a live exploit then it might be the one fixed.
(Reporter)

Comment 11

6 years ago
I have upgraded my plugins to the following:

SE 7 U2 10.2.0.13
SE 7 U2 10.2.1.255

The crash does not take place. There was a bit of lag time on the initial page load that cause the crash in a prior version:
http://direct.academybus.com/testarea/ticketsales

Since I did not debug the page/browser/plug-in this lag could be for multiple reasons.

Ken
(Reporter)

Comment 12

6 years ago
I should also mention I'm running FF 10.0.1 as well, so the change could have been on the browser (and not the plug-in) side....
Does this still reproduce?
Keywords: sec-other
Keywords: sec-vector
Keywords: sec-other
Group: core-security
Status: UNCONFIRMED → RESOLVED
Last Resolved: 5 years ago
Resolution: --- → WORKSFORME
(Assignee)

Updated

2 years ago
Product: Plugins → Plugins Graveyard
You need to log in before you can comment on or make changes to this bug.