Another critical vulnerability, version 3.5.1 is also affected.
The National Vulnerability Database has published information about another critical vulnerability in Firefox with a rating of "10 (HIGH)", which also applies to version 3.5.1 of this browser. On the IBM tracker, this vulnerability is also marked as HIGH Risk. The security focus site posted proof of concept for this vulnerability.
The essence of the vulnerability is in the processing of very long unicode strings, which can lead to buffer overflow and the execution of malicious code.
Mozilla responded to the discovery, stating that there is a vulnerability, but it cannot be used to harm, but later in its post an update appeared to read
')
"Firefox 3.5.x will really crash thanks to you at least for some users"
which means that at least some windows users are at risk.
The essence of the vulnerability is in the processing of very long unicode strings, which can lead to buffer overflow and the execution of malicious code.
Mozilla responded to the discovery, stating that there is a vulnerability, but it cannot be used to harm, but later in its post an update appeared to read
')
"Firefox 3.5.x will really crash thanks to you at least for some users"
which means that at least some windows users are at risk.
Source: https://habr.com/ru/post/64905/
All Articles