Posted on 09/09/2005 9:43:47 AM PDT by Bush2000
Unpatched Firefox flaw may expose users
By Joris Evers, CNET News.com
Published on ZDNet News: September 9, 2005, 3:53 AM PT
A new, unpatched flaw in that affects all versions of Firefox could let attackers surreptitiously run malicious code on users' PCs, a security researcher has warned.
The problem lies in the way Firefox handles Web links that are overly long and contain dashes, security researcher Tom Ferris said in an interview via instant messaging late Thursday.
He posted an advisory and a proof of concept to the Full Disclosure security mailing list and to his Security Protocols Web site.
The security vulnerability is a buffer overflow flaw that "allows for an attacker to remotely execute arbitrary code" on a vulnerable PC, Ferris said. An attacker could host a Web site containing the malicious code to exploit the flaw, he said. Though his proof of concept only crashes Firefox, Ferris claims he has been able to tweak it to run code.
Buffer overflows are a commonly exploited security problem. They occur when a program allows data to be written beyond the allocated end of a buffer in memory. A computer can be made to execute potentially malicious code by feeding in extra data that is designed to flood the buffer.
Ferris reported the bug to the Mozilla Foundation on Sunday, intending to go through the organization's bug-reporting process, he said. However, in an example of the uneasy alliance between security researchers and software makers, he decided to publicly disclose the flaw after a run-in with Mozilla staff, he said.
Mozilla, which coordinates development of Firefox and distributes the software, could not immediately comment on the flaw disclosure. However, a source close to the organization confirmed that Ferris had filed several bug reports, including this specific one.
Since the debut of Firefox 1.0 in November, usage of the open-source browser has grown. Security has been a main selling point for Firefox over Microsoft's Internet Explorer, which has begun to see its market share dip slightly--for the first time in years.
However, Firefox has had its own security woes. Several serious holes in the browser have been plugged since its official release, and experts have said that safe Web browsers don't exist.
The public bug disclosure comes just as Mozilla released the first beta of Firefox 1.5. The final release of the next Firefox update, which includes security enhancements, is due by year's end, according to the Firefox road map.
Ferris has found bugs in Microsoft software before, including a yet-unpatched flaw in Internet Explorer that Microsoft still has under investigation.
Earlier this month Microsoft credited Ferris with reporting a bug in a Windows feature called Remote Desktop Protocol that could allow an attacker to remotely restart Windows systems.
The DNC demand is also dumb, because you based what you would do also on a red herring - setting a condition that you would crititicize MS based on something that a group totally unrelated to Microsoft says or does is another copout.
You might as well say you'll criticize Microsoft when the moon is proven to be made of cheese - a condition that will never happen.
The realistic criteria you set were all met. All.
http://www.detnews.com/2005/technology/0506/20/tech-219580.htm Microsoft Chairman Bill Gates and Chief Executive Steve Ballmer have made repeated trips to China in recent years, helping to strengthen the company's relationship with top Chinese leaders in a country where connections are often vital in securing deals. Microsoft's partner in the MSN China venture, Shanghai Alliance, is run by a son of former President Jiang Zemin.
As part of its marketing campaign, Microsoft has donated software to state-run China Telecom and China's State Economic and Trade Commission. It has pledged to invest or donate $10 million to China's primary education. And it has offered to provide free Windows operating systems to government officials in Beijing for three years in return for its becoming an exclusive software provider.
" What? I already gave you a link to a thread I created where I called bill gates an idiot. Of course you never look at my links because they always prove you wrong."
I always look at your links - that's how i pointed out that the ballmer quote you made was from a satire webpage.
"Nor do you ever criticize anyone other than MS,"
Also not true
"even when others are far more guilty of actual collusion with the Chinese."
More guilty than what? Giving China a superior secure OS like Windows for free?
" You are an obsessed lunatic,"
This coming from a guy who out of 1000 posts, makes 5 that have nothing to do with Microsoft or Linux?
"that somehow wants to rip Microsoft for trying to sell software to China "
They're GIVING IT TO THEM FOR FREE. Not trying to sell it.
"you obviously support them getting it completely for free for others you want to protect."
That is what MS is doing.
You are an obsessed lunatic, that somehow wants to rip Microsoft for trying to sell software to China when you obviously support them getting it completely for free for others you want to protect.
Oops -
"You are an obsessed lunatic, that somehow wants to rip Microsoft for trying to sell software to China when you obviously support them getting it completely for free for others you want to protect."
Was your line and I should have put it in quotes.
I don't want anyone to think that such crassness was MY idea.
No you don't or you'd have seen the one I created to call Gates an idiot.
More guilty than what? Giving China a superior secure OS like Windows for free?
That's right. You're a complete hypocrite for acting concerned about Microsoft tyring to sell China proprietary software when you support the Chicoms getting free copies of Linux from Red Hat they promptly rename and resell as "Red Flag".
They're GIVING IT TO THEM FOR FREE. Not trying to sell it.
You can bold you fonts all you want, but China gets their copies of Linux legally for free, not Windows. Yet you've never condemned the act once, and probably never will.
" You can bold you fonts all you want, but China gets their copies of Linux legally for free, not Windows. Yet you've never condemned the act once, and probably never will."
I posted the link - Microsoft gave China Windows for FREE.
Outright and ignorant lie.
They let them view the source code, under strict circumstances, period. They DID NOT allow them to copy the code, legally. Nor, to modify it. Nor, to rename it "Red Flag". Nor the right to resell it, without a dime back to the US. They didn't allow any of that, but as you know, Linux does allow ALL that.
You look like a twisted fool feignting concern over Microsoft allowing them to view the code, only, under strict circumstances, when Linux lets them do anything they could possibly want to with its code.
But go ahead, it shows what kinds of idiots are supporting Linux, and attacking Microsoft for far less of an actual concern. Not to mention Microsoft wouldn't have even allowed those peeks at the source, if those completely free copies of Linux didn't exist, and weren't stealing their business, and dollars from the US economy.
Disgusting and stupid. I wouldn't give the Chinese anything but the finger, if 90+% of them were pirating my software and the only people capable of paying, the government, was passing laws outlawing my software. As you link infers, the Chicoms have turned down Gates offer for 3 years of free software, since they already are getting Linux for free from IBM, a deal that has no end in time, and one which you obviously support.
BS, I let the readers of this forum compare your comment to the quote themselves.
Mike, fyi.
BTW, my new DSL ISP doesn't support Firefox. I am bummed about that.
Yes, let them compare. Microsoft is trying to sell software, but can't because the Chinese are passing laws requiring the free software they get from IBM instead. Who is supporting the Chicoms more? Adam_azz says Microsoft, LOL.
"Yes, let them compare. Microsoft is trying to sell software, but can't because the Chinese are passing laws requiring the free software they get from IBM instead. Who is supporting the Chicoms more? Adam_azz says Microsoft, LOL"
IBM isn't a Linux distributor. There is no IBM Linux.
You think Windows is superior and more secure, and yet Microsoft gives it away to the ChiComs.
Linux isn't even an American invention, so we really have no control over what happens to it.
"IBM sells systems with Linux pre-installed. They also have donated billions with a 'b'in free software to open source, including hundreds of US patents, and hundreds of developers working on more "contributions" to China and the world at large, full time. But of course, you can't dare condemn them for anything, ever."
I see. IN GE WORLD...
Microsoft wanting to sell their superior OS in China - good.
IBM wanting to sell their servers with an insecure free knockoff UNIX clone, bad.
Eh?
Nope, I've said many times I don't think we should allow any US technology to go to China. But if it does go, it damn well better not be for free, we better charge them a hell of a lot, and monitor where it goes and what it's used for, IF they get it at all.
With you, giving it all to them for free is perfectly fine and good. And since that is your obvious position, faking concern over those that might attempt to sell products is the ultimate in hypocrisy.
"And since that is your obvious position, faking concern over those that might attempt to sell products is the ultimate in hypocrisy."
You have it backwards, I'm parroting your concern to show the hypicricy of YOUR position. :)
Seems pretty clear to me "Microsoft has donated software to state-run China Telecom and China's State Economic and Trade Commission." and "And it has offered to provide free Windows operating systems to government officials in Beijing for three years in return for its becoming an exclusive software provider." does not leave too much room for questions..
Where is the but...
As you link infers, the Chicoms have turned down Gates offer for 3 years of free software, since they already are getting Linux for free from IBM, a deal that has no end in time, and one which you obviously support.
Yup your disgust against MS lasted a bit longer this time, but ended the way it alsways does, atting IBM and Linux..
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.