unpatched Flaw in Firefox 1.5.0.7
PoC here lcamtuf.coredump.cx/ffoxdie.html

Thats old and has been fixed in the recent 1.5.0.8 release. btw it wasn't security related...just a crasher.

i cant see any update to firefox 1.5.0.8
it might not be a ready to release build.. if so then its not officially solved yet.

Does that page have the PoC in the code of the page? I opened the link, and forgot about it, and my FF crashed!

NO. The latest release is Firefox 1.5.0.7 look here: http://www.mozilla.org/



Are you sure?

Mozilla Firefox is prone to a remote memory-corruption vulnerability. This issue is due to a race condition that may result in double-free or other memory-corruption issues.

Attackers may likely exploit this issue to execute arbitrary machine code in the context of the vulnerable application

http://www.securityfocus.com/bid/19488/discuss
http://www.securityfocus.com/bid/19534/discuss

Once you go to the download page, it still shows 1.5.0.7

Just download 2.0 Rc1 Nightly which was just released

"Crashers" are usually (very) security related as long as the crash is due to a buffer overrun / memory corruption.
They've already made a working attack based on the IE "crasher" discovered a few days ago.

Simply put, if the bug can cause Firefox to run into memory preloaded with malicious code, you have a potential remote exploit.

2.0 rc1 feels like it needs a lil more work, feels slugggish.