All Internet News. Center for all Internet-related news.
Menu

Advanced Search

News Home

Submit an Article

Categories
Advertising
Community
Ecommerce
Internet Crimes
Internet News
Internet Providers
Internet Resources
Internet Security
Internet Services
LASIK - laser eye surgery
Legal Internet
Online Games
Search Engines
Telecom
Web Design and Development
Web Hosting
Weblogs
Wireless

Partner Sites
Contact Us
Privacy Policy

 


Category:

US-CERT Alert: Exploit for QueryInterface Vulnerability in Mozilla

US-CERT Alert: Exploit for QueryInterface Vulnerability in Mozilla

February 7, 2006 -- US-CERT is aware of publicly available exploit code for a memory corruption vulnerability in the Mozilla Firefox web browser and Thunderbird mail client. If JavaScript is enabled in these applications, then the system is vulnerable to exploitation.

A vulnerable system may be successfully exploited if a user is convinced to visit a specially crafted web page or open a specially crafted email. A remote, unauthenticated attacker may be able to execute arbitrary code on a compromised system. If the user has elevated privileges, then the attacker will be able to exploit them.

* VU#759273 - Mozilla QueryInterface memory corruption vulnerability

US-CERT urges users and administrators to implement the following recommendations:

* Update to Firefox 1.5.0.1 or SeaMonkey 1.0.
* Disable JavaScript in Thunderbird and Mozilla Suite.

Source: US-CERT



Source: Wired News
 
Advertisement
 
Categories: Advertising || Community || Ecommerce || Internet Crimes || Internet News || Internet Providers || Internet Resources || Internet Security || Internet Services || LASIK - laser eye surgery || Legal Internet || Online Games || Search Engines || Telecom || Web Design and Development || Web Hosting || Weblogs || Wireless

News Home || Advanced Search || Links || Contact Us || Privacy Policy