• Home
  • Podcast
    • Specials
  • Interviews
  • Movie Reviews
  • TV Reviews
  • DVD Reviews
  • Columns
  • News
    • TV News
    • Film News
    • DVD News
    • Comics News
    • Online Entertainment News
    • Music News
    • Book News
    • Space News

Slice of SciFi

This is How We Geek Out: Interviews, Reviews & More

  • Writers, After Dark
  • The Babylon Podcast
  • Slice of SciFi TV
  • Charlie Jade Verse
  • Contact Us
    • About Us

Mozilla Investigates New Firefox Flaw

October 3, 2006 By Sam Sloan 3 Comments

Written by: Elizabeth Montalbano – IDG News Service
Source: PC World

Hackers revealed exploit code for JavaScript vulnerability

The security team at Mozilla is looking into a flaw in its Firefox Web browser that hackers exposed at a conference in San Diego over the weekend.

In a presentation at the ToorCon hacker conference, hackers Mischa Spiegelmock and Andrew Wbeelsoi demonstrated exploit code for a vulnerability in the way Firefox handles JavaScript.

Mozilla today said it was busy investigating the flaw, and did not offer any security researchers for comment because, according to spokesperson Mary Colvig, they were all “heads down” on the problem. The company also said it will patch the flaw if it deems that action necessary.

Memory Filler
The vulnerability could allow someone to execute a memory corruption attack on Firefox if a user browsed to a Web site that contained the exploit code, says Ken Dunham, director of the rapid-response team at security services company iDefense, a VeriSign company.

“If you were to go to a Web site that contained the exploit code, it would fill up the available memory on the computer,” he says. This would create an environment in which an attacker could take over the computer to do something harmful, he adds.

Dunham says that iDefense labs tested the exploit code, and found that it was “unreliable” and crashed the Firefox browser. Because of this, he does not consider the exploit to be a critical threat to Firefox. However, “someone could make some changes to the exploit code and make it more reliable,” Dunham says.

He adds that there are other, more critical unpatched flaws in both Firefox and Microsoft’s Internet Explorer browser that are currently under attack by hackers.

**SPECIAL NOTE**

It turns out that this has ended up to be a hoax. Read Nina’s (our Webmaster) comments regarding this story.

Filed Under: Technology News

Comments

  1. Nina says

    October 3, 2006 at 7:26 pm

    Claimed security hole in Firefox “just a joke”

    The allegedly critical hole reported yesterday in Firefox’s JavaScript implementation has turned out, not surprisingly, to be a hoax. Mischa Spiegelmock, who made the claim at the Toorcon hacker conference, told Mozilla’s security chief Window Snyder, “The main purpose of our talk was to be humorous.”

    read more at: http://www.heise-security.co.uk/news/78970

    Reply
  2. Sam says

    October 3, 2006 at 7:47 pm

    Thanks for clearing that up Nina. I know that many use Firefox and this was a grave concern.

    Reply
  3. Spork says

    October 4, 2006 at 12:10 pm

    Anyone actually believing a story in which the claim that a security hole is “un-fixable” in Firefox (bot not IE) needs to be taken out back and have a truckload of sense beaten into them. *%/#* idiots.

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
Search in posts

Slice

Follow Slice of SciFi

  • youtube
  • bluesky
  • twitter
  • facebook

Listen to Slice of SciFi

  • iheartradio
  • pocketcasts
  • playerfm

Subscribe to Podcast

Apple PodcastsSpotifyiHeartRadioPodchaserPodcast IndexTuneInRSS

  • Movie & TV Reviews

Recent Comments

  • Kristen on Journal Now Interview With “Surface” Co-Creator: “I was just talking about this in the car this morning, not for the first time. I grew up watching…”
  • Xander Rohrig on Check Out the Cupcake Games: “its dig dug”
  • Curt Myers on 4K Review: “Dogma” 25th Anniversary Special Edition brings a lost classic home again: “The best the movie has looked. It’s dialogue heavy so the Atmos track is rarely used. When it comes in…”
  • Summer Brooks on “FATE: The Winx Saga” writer Olivia Cuartero-Briggs talks adapting properties: “I requested it. I always get a little curious when TV shows or films get abandoned or canceled then continue…”
  • anh on “FATE: The Winx Saga” writer Olivia Cuartero-Briggs talks adapting properties: “Great interview! And it’s good that it clarifies some things. But this interview…. was it requested by the publisher or…”
Neil deGrasse Tyson Bill Nye

Slice of SciFi
415 Pisgah Church Rd #302
Greensboro NC 27455-2590
602-635-6976

Artwork:
Slice of SciFi galaxy spiral designed by Tim Callender

Theme Music:
Slice of SciFi music and themes
courtesy of Sci-Fried

Sister Sites:
Writers, After Dark
The Babylon Podcast
Charlie Jade Verse
Slice of SciFi TV

Slice

Copyright Slice of SciFi © 2005–2026 · WordPress · Log in