Your Ad Here Your Ad Here
Page 1 of 2 12 LastLast
Results 1 to 10 of 15

Thread: Unpatched Highly Critical Vulnerability In Firefox 2.0

  1. #1
    4play's Avatar knob jockey
    Join Date
    Jan 2003
    Location
    London
    Age
    35
    Posts
    5,530
    SecurityFocus reports an unpatched highly critical vulnerability in Firefox 2.0. This defect has been known since June 2006 but no patch has yet been made available. The developers claimed to have fixed the problem in 1.5.0.5 according to Secunia, but the problem still exists in 2.0 according to SecurityFocus (and I have witnessed the crash personally). If security is the main reason users should switch to Firefox, how do we explain known vulnerabilities remaining unpatched across major releases?

    edit: The below link is a working example of the exploit. It should crash firefox so you are warned dont click it unless you really want to restart firefox.

    test


    Source: http://it.slashdot.org/article.pl?sid=06/10/28/2115202
    Last edited by 4play; 10-29-2006 at 10:17 PM.

  2. News (Archive)   -   #2
    frizshizzle's Avatar now paranoid. BT Rep: +1
    Join Date
    Aug 2006
    Location
    good ol' England
    Posts
    228
    tried that link in ie7 crashed that too.

  3. News (Archive)   -   #3
    peat moss's Avatar Software Farmer BT Rep: +15BT Rep +15BT Rep +15
    Join Date
    May 2003
    Location
    Delta B.C. Canada
    Posts
    10,816
    Nope did n't crash om me . But liked this comment .

    CONGRATULATIONS!

    Your browser is probably
    NOT VULNERABLE, or your
    computer is too fast.

  4. News (Archive)   -   #4
    Rip The Jacker's Avatar Retired
    Join Date
    Nov 2002
    Location
    Los Angeles, CA
    Age
    31
    Posts
    6,435
    Nothing happened to me. I have the NoScript extention installed, after disabling NoScript, and refreshing the page, Firefox crashed.

    So as long as scripts are blocked, nothing happens.

  5. News (Archive)   -   #5
    S!X's Avatar L33T Member BT Rep: +5
    Join Date
    Jul 2003
    Posts
    7,734
    Blah, mine closed

  6. News (Archive)   -   #6
    Didn't crash mine either Another NoScript user here.

  7. News (Archive)   -   #7
    Rip The Jacker's Avatar Retired
    Join Date
    Nov 2002
    Location
    Los Angeles, CA
    Age
    31
    Posts
    6,435
    Firefox is indeed safer with no scripts allowed.

  8. News (Archive)   -   #8
    true_neo's Avatar The Dark Lord Revan
    Join Date
    Mar 2003
    Location
    Norway
    Age
    31
    Posts
    383
    Crashed
    Owells, restore session ftw ;o
    Sage goes in the signature field.

  9. News (Archive)   -   #9
    backlash's Avatar usenet lover
    Join Date
    Aug 2003
    Location
    in your dreams
    Posts
    2,167
    cool, I got to use the new restore session feature.

  10. News (Archive)   -   #10
    Haa? BT Rep: +18BT Rep +18BT Rep +18BT Rep +18
    Join Date
    Oct 2006
    Location
    @ Home
    Posts
    191
    FireFox Is Aint
    VULNERABLE

    10x mate good to know that im safe
    Last edited by menlyman; 10-30-2006 at 01:42 PM. Reason: Lol Silly me didnt see that its for 2

Page 1 of 2 12 LastLast

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •