Slashdot Mirror

← Back to Stories (view on slashdot.org)

Unpatched Firefox 1.5 Exploit Made Public

Posted by CmdrTaco on from the caught-with-you-pants-down dept.

ThatGuyGreg writes "C|Net is reporting that an unpatched exploit in Firefox 1.5 has been made public, making it very easy for ne'er-do-well-sites to cause your browser to crash on startup with a single visit. Until a patch is released, it is recommended that you disable your history.dat file."

3 of 309 comments (clear)

  1. IE's execution of arbitrary code by Dreadlord · · Score: 5, Interesting

    Before someone starts saying Firefox is vulnerable to exploits just as IE, this exploits crashes the browser and only that, now compare this to IE's execution of arbitrary code.

    No software is perfect, but still, Firefox is clearly ahead.

    --
    The IT section color scheme sucks.
  2. Re:Firefox history code is horrible by WWWWolf · · Score: 3, Interesting

    Once you have the idea on how sucky Mozilla's history stuff is in practice, take a look at how the stuff is actually stored in history.dat. People have been rendered insane by just a single look at that stuff. Want to make sense of this format for some obscure reason? Read this and weep. This stuff is just about the most insane thing I've ever seen.

    I sure hope Mozilla folks get the unified storage plans together for Firefox 2.0, and use something like sqlite to store most of the user data. MorkDB format used by Mozilla is... just not elegant.

  3. Re:FC4, 1.5 by FoXDie · · Score: 4, Interesting

    Go to http://www.apple.com/ipod/features.html and tell me if I'm the only one that has Firefox crash from that page without fail, since the upgrade to 1.5

    --
    Support Liberty, Support Ron Paul