Apr 07 2005

A Firefox Bug

Jody posted this at 8:46 am under internet & computers

Get FirefoxMozilla Firefox JavaScript Engine Information Disclosure Vulnerability:

A vulnerability has been discovered in Mozilla Firefox, which can be exploited by malicious people to gain knowledge of potentially sensitive information.

The vulnerability is caused due to an error in the JavaScript engine, as a “lambda” replace exposes arbitrary amounts of heap memory after the end of a JavaScript string.

They made available an online test to see if your browser is vulnerable. Running the test a few times in succession crashed my Firefox.

It was first reported at that site on April 4, but the official bug report says it’s resolved. I couldn’t find the fix.


Email This Post Email This Post
Tags:

2 Responses to “A Firefox Bug”. Leave a Reply.

  1. # Guidoon 07 Apr 2005 at 10:35 am

    I blatantly copied your post, it was so good… Simon pointed out in a comment then that there is actually a fix for the bug, and it will go into Firefox 1.0.3.

    My Post: http://www.haslo.ch/permalink_588~en
    The Fix: http://weblogs.mozillazine.org.....07896.html

    Thanks for pointing out the bug, BTW :-)

  2. # Phillipon 07 Apr 2005 at 2:16 pm

    I did the test, and a some stuff showed up in the window — but what the hell does it mean?

Comments RSS

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Note: This post is over 3 years old. You may want to check later in this blog to see if there is new information relevant to your comment.

By submitting a comment here you grant this site a perpetual license to reproduce your words and name/web site in attribution.