[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: zero-day flaws in Firefox: about 30 unpatched Firefox flaws

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: zero-day flaws in Firefox: about 30 unpatched Firefox flaws
From: Mailinglists Address <mailinglist@xxxxxxxxxxxxxxxxxx>
Date: Wed, 04 Oct 2006 13:37:18 -0500

According to this article it was a hoax... So who is telling the truth,
and what sort of fall out will come from this?

http://www.betanews.com/article/Firefox_Flaw_a_Hoax_Admits_Speaker/1159903320

Tom Walsh

ragan@xxxxxxxxx wrote:
> http://news.com.com/2100-1002_3-6121608.html?part=rss&tag=6121608&subj=news
>
> An attacker could commandeer a computer running the browser simply by 
> crafting a Web page that contains some malicious JavaScript code, Mischa 
> Spiegelmock and Andrew Wbeelsoi said in a presentation at the ToorCon hacker 
> conference here. The flaw affects Firefox on Windows, Apple Computer's Mac OS 
> X and Linux, they said.
>
> The hackers claim they know of about 30 unpatched Firefox flaws. They don't 
> plan to disclose them, instead holding on to the bugs.
>
> "I do hope you guys change your minds and decide to report the holes to us 
> and take away $500 per vulnerability instead of using them for botnets," 
> Ruderman said.
>
>

References:
- zero-day flaws in Firefox: about 30 unpatched Firefox flaws
  - From: ragan

Prev by Date: RE: Informing Companies about security vulnerabilities...
Next by Date: RE: Informing Companies about security vulnerabilities...
Previous by thread: zero-day flaws in Firefox: about 30 unpatched Firefox flaws
Next by thread: phpMyWebmin 1.0 <= (target) Remote File Include Vulnerability
Index(es):
- Date
- Thread