Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

Attack code for Firefox zero-day goes wild, says researcher
The Register ^ | 18 February 2010 | Dan Goodin

Posted on 02/19/2010 10:40:03 AM PST by ShadowAce

A Russian security researcher on Thursday said he has released attack code that exploits a critical vulnerability in the latest version of Mozilla's Firefox browser.

The exploit - which allows attackers to remotely execute malicious code on end user PCs - triggers a heap corruption vulnerability in the popular open-source browser, said Evgeny Legerov, founder of Moscow-based Intevydis. He recently added it as a module to Vulndisco, an add-on to the Immunity Canvas automated exploitation system sold to security professionals.

"We've played a lot with it in our labs - it was very reliable," Legerov wrote in an email to The Reg. "Works against the default install of Firefox 3.6. We've tested it on XP and Vista."

The report comes as Mozilla pushed out a Firefox update that tackles three critical vulnerabilities in version 3.5.7. One of those bugs is also described as a heap corruption vulnerability, but Legerov said the flaw is different from the one his code exploits.

Mozilla issued a statement that read in part: "Mozilla takes all security vulnerabilities seriously, and have as yet been unable to confirm the claim of an exploit. We value the contributions of all security researchers and encourage them to work within our security process, responsibly disclosing vulnerabilities to ensure the highest level of security and best outcome for users."

Legerov said his firm does not provide advanced notification to software makers under an arrangement often referred to as responsible disclosure.

If Legerov's claim pans out, it would be one of the few times in recent memory that a zero-day vulnerability for Firefox has circulated in the wild. While the exploit is currently available only to those who pay a hefty licensing fee, wider circulation can't be far behind. This story will be updated as more is learned.

More about the bug is here and here. ®


TOPICS: Computers/Internet
KEYWORDS: firefox; security
Navigation: use the links below to view more comments.
first 1-2021-4041-48 next last

1 posted on 02/19/2010 10:40:03 AM PST by ShadowAce
[ Post Reply | Private Reply | View Replies]

To: rdb3; Calvinist_Dark_Lord; GodGunsandGuts; CyberCowboy777; Salo; Bobsat; JosephW; ...

2 posted on 02/19/2010 10:40:32 AM PST by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 1 | View Replies]

To: ShadowAce

I am pretty much stupid about this stuff, but use Firefox. What does this mean for me? Do I need to do something?


3 posted on 02/19/2010 10:42:01 AM PST by brytlea (Jesus loves me, this I know.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: ShadowAce

I am pretty much stupid about this stuff, but use Firefox. What does this mean for me? Do I need to do something?


4 posted on 02/19/2010 10:42:23 AM PST by brytlea (Jesus loves me, this I know.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: brytlea

3.5.8 came out today, at least it did when I first opened Firefox this morning.


5 posted on 02/19/2010 10:43:27 AM PST by John W
[ Post Reply | Private Reply | To 3 | View Replies]

To: ShadowAce

6 posted on 02/19/2010 10:44:27 AM PST by JoeProBono (A closed mouth gathers no feet)
[ Post Reply | Private Reply | To 2 | View Replies]

To: ShadowAce
"Security researcher", and he intentionally releases the attack code to the public?

Sorry, dude, that makes you no different than any other scumbag, black-hat hacker in my book.

7 posted on 02/19/2010 10:46:32 AM PST by TChris ("Hello", the politician lied.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: John W

Firefox 3.6 is out now.

Use the HELP tab and CHECK FOR UPDATES or here is a link to the download.

http://www.mozilla.com/en-US/


8 posted on 02/19/2010 10:48:05 AM PST by Mr. Jazzy ("I AM JIM THOMPSON and moderates make me PUKE!!!")
[ Post Reply | Private Reply | To 5 | View Replies]

To: brytlea

No, you don’t need to do anything. Your copy of Firefox will automatically download and install (probably already has) all security updates. A major update was sent out two or three days ago.


9 posted on 02/19/2010 10:51:53 AM PST by Ron C.
[ Post Reply | Private Reply | To 4 | View Replies]

To: ShadowAce

Ok let me get this straight. A “security researcher” releases code that is toxic to a browser? I have always suspected that the anti virus people and the hackers are one and the same. They run a protection racket. Anything here that I’m missing? Believe me I don’t claim to understand the world of IT, but this seems to confirm what Ive always suspected to be true. Am I right?


10 posted on 02/19/2010 10:51:58 AM PST by DariusBane (Even the Rocks shall cry out "Hobamma to the Highest")
[ Post Reply | Private Reply | To 1 | View Replies]

To: brytlea
I'm not sure yet. From my understanding of the reading, there is no fix for this particular exploit.

Of course, there is no verifiable instance of it occurring yet, but give it some time.

11 posted on 02/19/2010 10:52:00 AM PST by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 3 | View Replies]

To: DariusBane

Sure seems like it. I don’t normally run AV, though.


12 posted on 02/19/2010 10:52:54 AM PST by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 10 | View Replies]

To: Mr. Jazzy

Is it just me or does 3.6 seem to run much faster?


13 posted on 02/19/2010 11:07:03 AM PST by foolishboi (Under certain circumstances profanity provides relief denied even to prayer...... Mark Twain)
[ Post Reply | Private Reply | To 8 | View Replies]

To: John W

Oh, yeah, I forgot there was an update I downloaded this morning. Good!


14 posted on 02/19/2010 11:08:22 AM PST by brytlea (Jesus loves me, this I know.)
[ Post Reply | Private Reply | To 5 | View Replies]

To: Ron C.

Thank you. This stuff really worries me more now because this year, for the first time, I have had 2 trojans that were a royal pain to get rid of. It seems to me that there has been an uptick in that stuff, but it may also just be that I’ve gotten dumber and somehow am not being careful.


15 posted on 02/19/2010 11:09:52 AM PST by brytlea (Jesus loves me, this I know.)
[ Post Reply | Private Reply | To 9 | View Replies]

To: ShadowAce

HOw would one pick it up?


16 posted on 02/19/2010 11:10:26 AM PST by brytlea (Jesus loves me, this I know.)
[ Post Reply | Private Reply | To 11 | View Replies]

To: brytlea

Unfortunately, the article didn’t say. Makes one wonder, doesn’t it?


17 posted on 02/19/2010 11:12:08 AM PST by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 16 | View Replies]

To: ShadowAce

This sounds like this Russian is selling a program that is capable of hacking into someone’s system, via Firefox.

Is that not a computer crime? What possible legal use is the product this Russian is peddling??


18 posted on 02/19/2010 11:12:15 AM PST by Bean Counter (I keeps mah feathers numbered, for just such an emergency...)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Bean Counter
What possible legal use is the product this Russian is peddling??

Security probing of networks. There are companies that offer their services to companies, offering to break into their network to check the network's security. This is usually done with the permission of the company and most of the time it is very much above-board.

19 posted on 02/19/2010 11:14:24 AM PST by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 18 | View Replies]

To: foolishboi

I think it is just a better, trimmer build.


20 posted on 02/19/2010 11:17:49 AM PST by Mr. Jazzy ("I AM JIM THOMPSON and moderates make me PUKE!!!")
[ Post Reply | Private Reply | To 13 | View Replies]


Navigation: use the links below to view more comments.
first 1-2021-4041-48 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson