severity 327549 important thanks * Florian Weimer ([EMAIL PROTECTED]) wrote: > Package: mozilla-firefox > Version: 1.0.6-4 > Severity: grave > Tags: security > Justification: user security hole > > GulfTech has disclosed a security bug in Mozilla-based browsers: > > <http://www.gulftech.org/?node=research&article_id=00091-07212005> > > Malicious web sites can crash the browser. This appears to be a memory > corruption problem, so perhaps arbitrary code execution is possible. > > Workaround (according to my tests): Disable JavaScript.
Since it seems the Mozilla team does not believe it to be exploitable, I'm going to drop the severity to important. Thanks for the report. -- Eric Dorland <[EMAIL PROTECTED]> ICQ: #61138586, Jabber: [EMAIL PROTECTED] 1024D/16D970C6 097C 4861 9934 27A0 8E1C 2B0A 61E9 8ECF 16D9 70C6 -----BEGIN GEEK CODE BLOCK----- Version: 3.12 GCS d- s++: a-- C+++ UL+++ P++ L++ E++ W++ N+ o K- w+ O? M++ V-- PS+ PE Y+ PGP++ t++ 5++ X+ R tv++ b+++ DI+ D+ G e h! r- y+ ------END GEEK CODE BLOCK------
signature.asc
Description: Digital signature
