Your Ad Here Your Ad Here
Results 1 to 6 of 6

Thread: Unpatched Firefox flaw may expose users

  1. #1
    tesco's Avatar woowoo
    Join Date
    Aug 2003
    Location
    Canadia
    Posts
    24,069
    [news=http://img317.imageshack.us/img317/9608/untitled35hf.gif]A new, unpatched flaw in that affects all versions of Firefox could let attackers surreptitiously run malicious code on users' PCs, a security researcher has warned.

    The problem lies in the way Firefox handles Web links that are overly long and contain dashes, security researcher Tom Ferris said in an interview via instant messaging late Thursday.

    The security vulnerability is a buffer overflow flaw that "allows for an attacker to remotely execute arbitrary code" on a vulnerable PC, Ferris said. An attacker could host a Web site containing the malicious code to exploit the flaw, he said. Though his proof of concept only crashes Firefox, Ferris claims he has been able to tweak it to run code.


    Source: ZDNet[/news]

  2. News (Archive)   -   #2
    Guillaume's Avatar Kentish old lady BT Rep: +8BT Rep +8
    Join Date
    May 2003
    Posts
    7,763
    A temporary fix for this problem can be found here.

  3. News (Archive)   -   #3
    peat moss's Avatar Software Farmer BT Rep: +15BT Rep +15BT Rep +15
    Join Date
    May 2003
    Location
    Delta B.C. Canada
    Posts
    10,816
    Nice work fellas, I was just reading about it before I come on here .



    @Guillaume, nice thing is two clicks and your safe, also two ways to do it .
    I did the auto but you can do it manualy , try that with IE .
    Last edited by peat moss; 09-11-2005 at 06:31 PM.

  4. News (Archive)   -   #4
    zdensys
    Guest
    It was quick to post a workaround that fast

  5. News (Archive)   -   #5
    zapjb's Avatar Computer Abuser BT Rep: +3
    Join Date
    Nov 2002
    Posts
    3,694
    I did it manually. No sweat.

  6. News (Archive)   -   #6
    tesco's Avatar woowoo
    Join Date
    Aug 2003
    Location
    Canadia
    Posts
    24,069
    Quote Originally Posted by zdensys
    It was quick to post a workaround that fast
    That's why open source is so great

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •