Firefox Zero-Day DoS Discovered

Filed under
Moz/FF

A Javascript handling issue in the latest version of the Firefox browser can be exploited to cause a buffer overflow and crash the browser.

Proof of concept code provided in the Milw0rm exploit advisory did cause a Firefox 1.5.0.2 browser to crash immediately. That behavior prompted both the Mozilla feedback agent and Microsoft's error reporting tool to launch and request permission to send the details of the crash along to the respective organizations.

The exploit exists in Linux as well as Windows versions of Firefox.

Full Story.