Search for
Login | Username Password Forgot? | Email: | Create Account
Technology / Internet | Entries: 319 | Views: 4548 | Modified: 1 month ago | | Add to My Feeds
Report
Mozilla Foundation logo
Image via Wikipedia

Milw0rm is finally back with some new interesting informations and exploits , one of then is Firefox 3.5 Zero Day exploit! the exploit has been published on milw0rm yesterday. The firefox 3.5 zero day exploit itself simply demonstrates a security vulnerability that existed on firefox 3.5 by loading windows calculator. The most preventive way to take is by disabling javascript on firefox 3.5 , otherwise your pcs might get infected!

Excerpt :

The exploit portal Milw0rm has published an exploit for Firefox 3.5. The exploit demonstrates a security vulnerability by starting the Windows calculator. In testing by heise Security, the exploit crashed Firefox under Vista, but security service providers Secunia and VUPEN confirmed that attackers using prepared websites can infect PCs. The cause of the problem is a buffer overflow when processing specially prepared Font tags.

The Mozilla Foundation has been informed about the problem, but so far has not responded to queries by heise Security. An update does not currently exist. So far there are no reports of sites on the internet being first to use the hole for active infections and exploitation of Windows PCs. Since the published exploit uses PC heap spraying under JavaScript, disabling JavaScript should act as a stop gap. When the exploit was tested with Windows 7 RC1, after a short time, the browser displayed a dialogue offering to abort the script.

Download firefox 3.5 zero day Exploit : http://www.milw0rm.com/exploits/9137


More from แนวคิดใหม่ในแบบคาสิโนออนไลน์

Xss scanner 09 Oct 3
scanner xss 09 Jul 22
Is milw0rm dead ? 09 Jul 9

^ Back To Top