[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <20061001095510.29009.qmail@securityfocus.com>
Date: 1 Oct 2006 09:55:10 -0000
From: ragan@...il.com
To: bugtraq@...urityfocus.com
Subject: zero-day flaws in Firefox: about 30 unpatched Firefox flaws
http://news.com.com/2100-1002_3-6121608.html?part=rss&tag=6121608&subj=news
An attacker could commandeer a computer running the browser simply by crafting a Web page that contains some malicious JavaScript code, Mischa Spiegelmock and Andrew Wbeelsoi said in a presentation at the ToorCon hacker conference here. The flaw affects Firefox on Windows, Apple Computer's Mac OS X and Linux, they said.
The hackers claim they know of about 30 unpatched Firefox flaws. They don't plan to disclose them, instead holding on to the bugs.
"I do hope you guys change your minds and decide to report the holes to us and take away $500 per vulnerability instead of using them for botnets," Ruderman said.
Powered by blists - more mailing lists