Author Topic: Memory Corruption Vulnerability in Firefox 13  (Read 683 times)

0 Members and 1 Guest are viewing this topic.

Offline ebenzunlimited

  • Lead Admin
  • *****
Memory Corruption Vulnerability in Firefox 13
« on: June 19, 2012, 04:53:35 PM »

A security researcher Ucha Gobejishvili has discovered a SECURITY memory corruption vulnerability in the Firefox 13, the latest version of Mozilla Firefox.

The vulnerabilities can be exploited by local privileged user accounts with low user inter action or remote via manipulated http request & high required user inter action.

According to our report  the researcher notified the Mozilla about the vulnerability. He told that Mozilla confirmed the existence of the vulnerability and planned on fixing it in the upcoming versions.

In a Proof-of-concept video , the researcher showed that by launching the specially crafted HTML file the vulnerability would be triggered, causing a denial-of-service (DOS) state.

In practice, an attacker would have to host a website that contains the malicious webpage. Then, with the aid of cleverly designed emails or instant messages, he could lure potential victims to the website.

The POC video:
DOS Mozilla Firefox Browser
« Last Edit: June 20, 2012, 02:37:37 AM by obasimiracle »
Insane I Lived♥ Sane I Died♥<img src='http://i253.photobucket.com/albums/hh74/reallytired2/family%20pictures/buckeye%20stuff/clap.gif' />

 

* Newest Techies

Inside: 3P Techies Blog

Get Updates


Sign up to get latest updates delivered to your inbox. No Spam, We Promise!


Copyright 3rd Planet Techies. All rights Reserved.

Top || Mobile || Privacy