« «
» »

Firefox 3.5 0day Vulnerability

Oh joy, within 24 hours of the MS IE/ActiveX exploit we have a remote vulnerability against Firefox 3.5.

The vulnerability is caused due to an error when processing JavaScript code handling e.g. “font” HTML tags and can be exploited to cause a memory corruption. Successful exploitation allows execution of arbitrary code. The vulnerability is confirmed in version 3.5. Other versions may also be affected.

Currently Mozilla have no “known vulnerability” page for Firefox 3.5 security issues, I presume once it’s created it’ll be here.

There is a sample exploit available already, so it’ll be in the wild soon if not already. :-(

This entry was posted on Tuesday, July 14th, 2009 at 11:35 pm and is filed under Linux, Microsoft, Security, Software. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

4 Comments

Leave a Reply

Comments will be closed on July 14, 2010.

  • Recent Posts

  • Recent Comments

  • Random Image

     
    		MVC-002L.JPG
     

  • Categories

  • Archives

  • Meta

Creative Commons Attribution-NonCommercial-ShareAlike 2.5 Australia
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 2.5 Australia.