recent Mozilla, Firefox, Netscape vulnerable to JavaScript Memory Exposure
by Antony
SillyDog701 member Don Luchini told us a new vulnerabilty has been discovered in Mozilla products that allows a website to collect information from memory by means of the JavaScript readMemory(); function.
A vulnerability has been discovered in Mozilla, which can be exploited by malicious people to gain knowledge of potentially sensitive information.The vulnerability is caused due to an error in the JavaScript engine, as a "lambda" replace exposes arbitrary amounts of heap memory after the end of a JavaScript string.
Successful exploitation may disclose sensitive information in memory.
> Join our discussion: “Mozilla Arbitrary Memory Exposure Vulnerability” in SillyDog701 Message Centre.
Posted by Antony Shen on April 4, 2005 8:31 PM
more April 2005 stories or Year 2005 stories
