resource:// extended POC

ascii@ush.it 
Reference: 
(1) http://ha.ckers.org/blog/20070516/read-firefox-settings-poc/
(2) http://larholm.com/2007/06/04/unpatched-input-validation-flaw-in-firefox-2004/
(3) http://larholm.com/2007/05/25/firefox-0day-local-file-reading/
(4) https://bugzilla.mozilla.org/show_bug.cgi?id=367428
(5) https://bugzilla.mozilla.org/show_bug.cgi?id=380994

1 Initial discovery by Sergey Vzloman, published by RSnake
2 Other PoC
3 Upgrade : )
4 Bugzilla bug 367428 (resource traversal and bypass, reopened bug)
4 Bugzilla bug 380994 (resource traversal on linux)
resource:// extended POC www.ush.it (c) ascii@ush.it 2007 - Bug initially discovered by Sergey Vzloman.