Уразливості в Mozilla Firefox

22:55 27.09.2006

Нещодавно були виявлені декілька проблем безпеки в Mozilla та продуктах на його основі, такому як Mozilla Firefox. Проект CVE повідомляє про наступні уразливості:

  • The Javascript engine might allow remote attackers to execute arbitrary code.
  • Multiple integer overflows in the Javascript engine might allow remote attackers to execute arbitrary code.
  • Specially crafted Javascript allows remote attackers to execute arbitrary code.
  • Remote AutoConfig (PAC) servers could execute code with elevated privileges via a specially crafted PAC script.
  • Scripts with the UniversalBrowserRead privilege could gain UniversalXPConnect privileges and possibly execute code or obtain sensitive data.
  • Multiple vulnerabilities allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code.

Додаткова інформація:

  • New Mozilla Firefox packages fix several vulnerabilities (деталі)

Leave a Reply

You must be logged in to post a comment.