Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: FireFox DoS exploit public SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
FireFox DoS exploit public
An exploit is being made publicly available that creates a DoS situation in up to date FireFox versions.

Now as far as exploits that require javascript to be enabled go, I can't help but feel that a DoS is somewhat lame... If the attacker can already execute scripts, how much worse is getting the cpu load up to 100% ? Moreover the user will soon enough figure it out.

Your best option to mitigate this is to install something like NoScript.

Swa Frantzen -- Section66


760 Posts
May 18th 2006

Sign Up for Free or Log In to start participating in the conversation!