firefox also vulnerable???
-
- Posts: 19
- Joined: October 23rd, 2003, 12:08 am
firefox also vulnerable???
try this -->
"A proof of concept page is available at computerterrorism.com to convince yourself that this does, indeed, work."
http://www.security.ithub.com/article/U ... 164_1.aspx
http://www.computerterrorism.com/research/ie/poc.htm
"A proof of concept page is available at computerterrorism.com to convince yourself that this does, indeed, work."
http://www.security.ithub.com/article/U ... 164_1.aspx
http://www.computerterrorism.com/research/ie/poc.htm
- Thumper
- Posts: 8037
- Joined: November 4th, 2002, 5:42 pm
- Location: Linlithgow, Scotland
- Contact:
-
- Posts: 19
- Joined: October 23rd, 2003, 12:08 am
Thumper wrote:Maybe if you'd bothered trying it yourself instead of running in here shouting about it, you'd see it isn't. Jeez.
- Chris
i have tried it with FF on linux and when javascript is enabled it crashed...so...i dont want to 'shout' about it...the article goes about an IE flaw...i was only asking if it also was crashing on somebody else using FF.
-
- Folder@Home
- Posts: 1195
- Joined: November 1st, 2004, 2:43 pm
- Location: Toronto, Canada
Crashes here too on Windows XP - did not have to reboot ... only Fx crashed
This is already in bugzilla
https://bugzilla.mozilla.org/show_bug.cgi?id=317334
This is already in bugzilla
https://bugzilla.mozilla.org/show_bug.cgi?id=317334
- Thumper
- Posts: 8037
- Joined: November 4th, 2002, 5:42 pm
- Location: Linlithgow, Scotland
- Contact:
-
- Posts: 158
- Joined: November 1st, 2003, 10:46 am
I think you missed the point, Bollix47. The exploit is supposed to allow an attacker to execute arbitrary code on your PC, but in the case of Firefox all it does is cause a crash. Crashing may be far from ideal behaviour, but it beats the hell out of allowing malicious code to be run!
A society that gets rid of all its troublemakers goes downhill. - Robert A. Heinlein
-
- Posts: 46
- Joined: November 28th, 2002, 6:25 pm
Bumping old topic here...
The page still crashes latest FF release (1.5 RC3). Though the exploit doesn't in FF, the buffer overflow exploit still manages to crash the browser, which is still a bad thing. Some malicious person can just use this to crash FF browsers.
The website doesn't do anything in Opera, it doesn't even crash Opera.
The page still crashes latest FF release (1.5 RC3). Though the exploit doesn't in FF, the buffer overflow exploit still manages to crash the browser, which is still a bad thing. Some malicious person can just use this to crash FF browsers.
The website doesn't do anything in Opera, it doesn't even crash Opera.
- Thumper
- Posts: 8037
- Joined: November 4th, 2002, 5:42 pm
- Location: Linlithgow, Scotland
- Contact:
-
- Posts: 49
- Joined: March 27th, 2005, 4:13 am
Thumper wrote:We know. It'll get fixed at some point. This kind of crash isn't considered a priority, because as it isn't exploitable such sites don't exist in the wild.
- Chris
It is now
http://www.theregister.co.uk/2005/12/01 ... it_trojan/
-
- Posts: 14
- Joined: January 19th, 2005, 2:43 pm
- Location: Cleveland, OH
- Contact:
Nevermind, wrong thread.
Tom
Darkscribes, Home of Anime and SciFi Fanfiction and Original works of Fiction.
Darkscribes, Home of Anime and SciFi Fanfiction and Original works of Fiction.
- scratch
- Posts: 4942
- Joined: November 6th, 2002, 1:27 am
- Location: Massachusetts
stevelam wrote:Thumper wrote:We know. It'll get fixed at some point. This kind of crash isn't considered a priority, because as it isn't exploitable such sites don't exist in the wild.
- Chris
It is now
http://www.theregister.co.uk/2005/12/01 ... it_trojan/
yes, but you are unable to EXPLOIT anything with it in firefox.
oh noes, it crashes my browser! big deal.
-
- Posts: 1896
- Joined: May 30th, 2004, 5:20 am
hekkie wrote:Thumper wrote:Maybe if you'd bothered trying it yourself instead of running in here shouting about it, you'd see it isn't. Jeez.
- Chris
i have tried it with FF on linux and when javascript is enabled it crashed...so...i dont want to 'shout' about it...the article goes about an IE flaw...i was only asking if it also was crashing on somebody else using FF.
It does NOT crash my Firefox 1.5 with javascript enabled.
-
- Posts: 0
- Joined: December 31st, 1969, 5:00 pm
seen the "terrorism". i have "noscript". i am immune to links posted in these forums. this is a weenie subject. just a weenie thing. out of all the postings i have observed concerning this subject they belong in the weenie barrel. with the pickels. post a link that will crash me and let's see what this is all about. i dare you. anyone.