Mozilla Comments on Firefox 3.5.1 issue

Yesterday we published a diary about a new vulnerability and POC that affected Firefox 3.5.1.  Today we received a note from the good people at Mozilla with some clarification.  Here is what they said:

We do not believe this is any kind of boundary condition, but a
non-exploitable denial-of-service due to memory exhaustion.

Our bug for reference:
https://bugzilla.mozilla.org/show_bug.cgi?id=504342

Thanks for the update, Reed!

Marcus H. Sachs
Director, SANS Internet Storm Center
 

Marcus

301 Posts
ISC Handler
Jul 19th 2009

Sign Up for Free or Log In to start participating in the conversation!