Linux Today: Linux News On Internet Time.

internetnews.com: JavaScript Flaw Hits Mozilla Users

Apr 05, 2005, 15:00 (3 Talkback[s])
(Other stories by Sean Michael Kerner)

"Russian security researcher going by the alia alias of Azafran has discovered a flaw in Mozilla Suite and Firefox Web browsers that could potentially put users at risk from the disclosure of arbitrary heap memory.

"The JavaScript Lambda Replace Heap Memory Disclosure Vulnerability exists in how the 'replace()' function handles lambda expressions. An attacker could exploit the flaw and read the arbitrary contents of a users heap memory. It could also potentially be used for further attacks against the vulnerable computer..."

Complete Story

Related Stories: