Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: FireFox DoS exploit public SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
FireFox DoS exploit public
An exploit is being made publicly available that creates a DoS situation in up to date FireFox versions.

Now as far as exploits that require javascript to be enabled go, I can't help but feel that a DoS is somewhat lame... If the attacker can already execute scripts, how much worse is getting the cpu load up to 100% ? Moreover the user will soon enough figure it out.

Your best option to mitigate this is to install something like NoScript.

Swa Frantzen -- Section66


760 Posts
May 18th 2006

Sign Up for Free or Log In to start participating in the conversation!