FrSIRT - Mozilla Firefox 1.0.3 Remote Arbitrary Code Execution Exploit
Mozilla Firefox 1.0.3 Remote Arbitrary Code Execution Exploit
Date : 07/05/2005
FrSIRT Comment - This is a 0day exploit/vulnerability (unpatched).
This code will download/execute a malware without user interaction.
Rated as : Critical
Solution : Disable Javascript
Joel Esler, Sourcefire, Snort, Immunet, ClamAV, Apple, and Network Security. This is my blog.
Subscribe to:
Post Comments (Atom)
Evernote, Omnifocus, and my productivity
Over the past several years my job here at Cisco Talos has changed drastically. I took on new roles, which is awesome and exciting, but in ...

-
Without going off the deep-end here and discussing every single Snort rule keyword, I just wanted to touch on a few modifiers that people so...
-
Let me start off by saying I'm not bashing the writer of this article, and I'm trying not to be super critical. I don't want to...
-
Over the past several years my job here at Cisco Talos has changed drastically. I took on new roles, which is awesome and exciting, but in ...

2 comments:
FF1.0.2 isn't vulnerable according to the code provided by K-Otic.
Must be something the Mozilla Team added/changed in the 1.0.3 release.
Sure! They're called "features". You should be used to them by now. Microsoft has them all the time.
Post a Comment