unpatched Flaw in Firefox 1.5.0.7

[franzon]

unpatched Flaw in Firefox 1.5.0.7

PoC here lcamtuf.coredump.cx/ffoxdie.html

[supernova_00]

Thats old and has been fixed in the recent 1.5.0.8 release. btw it wasn't security related...just a crasher.

[Marvelous]

i cant see any update to firefox 1.5.0.8

it might not be a ready to release build.. if so then its not officially solved yet.

[zeroday]

Does that page have the PoC in the code of the page? I opened the link, and forgot about it, and my FF crashed! :angry:

[franzon]

Thats old and has been fixed in the recent 1.5.0.8 release.

NO. The latest release is Firefox 1.5.0.7 look here: http://www.mozilla.org/

btw it wasn't security related...just a crasher.

Are you sure?

Mozilla Firefox is prone to a remote memory-corruption vulnerability. This issue is due to a race condition that may result in double-free or other memory-corruption issues.

Attackers may likely exploit this issue to execute arbitrary machine code in the context of the vulnerable application

http://www.securityfocus.com/bid/19488/discuss

http://www.securityfocus.com/bid/19534/discuss

Edited September 19, 2006 by franzon

[Boiling Ice]

NO. The latest release is Firefox 1.5.0.7 look here: http://www.mozilla.org/

Once you go to the download page, it still shows 1.5.0.7

[Deadlydread]

Just download 2.0 Rc1 Nightly which was just released :whistle: :woot:

[Malisk]

Thats old and has been fixed in the recent 1.5.0.8 release. btw it wasn't security related...just a crasher.

"Crashers" are usually (very) security related as long as the crash is due to a buffer overrun / memory corruption.

They've already made a working attack based on the IE "crasher" discovered a few days ago.

Simply put, if the bug can cause Firefox to run into memory preloaded with malicious code, you have a potential remote exploit.

[duntkno]

2.0 rc1 feels like it needs a lil more work, feels slugggish.