Slashdot Mirror

← Back to Stories (view on slashdot.org)

Another Denial of Service Bug Found in Firefox 2

Posted by ryuzaki0 on from the be-more-secure dept.

An anonymous reader writes "A second security flaw that could cause the new Firefox 2 browser to crash has been publicly disclosed. The vulnerability lies in the way the open-source browser handles JavaScript code. Viewing a rigged Web page will cause the browser to exit, a representative for Mozilla, the publisher of the software, said Wednesday. Contrary to claims on security mailing lists, the bug cannot be exploited to run arbitrary code on a PC running Firefox 2, the representative said. This flaw in the JavaScript Range object is different than the denial-of-service vulnerability in Firefox 2 that was confirmed by Mozilla last week. That bug is related to a more serious security hole, which was fixed in earlier versions of Firefox, the organization has said. The two 'crashers' are the only publicly released vulnerabilities that have been confirmed by Mozilla in the week since Firefox 2 was launched. The issues are only minor, the organization has said."

15 of 206 comments (clear)

  1. Old times by managementboy · · Score: 4, Insightful

    It used to be that if one an application crashed and it was called just that: it crashed. Today its a DOS attack! Imagine how many DOS my old Windows 3.11 had... come to think of it, it only had one DOS.

    We present "DOS reloaded"!

    1. Re:Old times by cperciva · · Score: 4, Insightful

      It used to be that if one an application crashed and it was called just that: it crashed. Today its a DOS attack!

      Not necessarily. Application-crashing bugs are Denial of Service bugs if they can be triggered remotely.

      There's a fundamental difference between "I can make my copy of FireFox crash" and "I can make your copy of FireFox crash".

      --
      Tarsnap: Online backups for the truly paranoid
    2. Re:Old times by jesser · · Score: 3, Insightful

      More to the point, there's a fundamental difference between "I can make your copy of Firefox crash when you visit my site" and "I can make your copy of Apache crash".

      Crash bugs in client software such as web browsers are "crashes", not "DoS vulnerabilities".

      --
      The shareholder is always right.
  2. Re:LOL IE Users! by Mikachu · · Score: 3, Insightful

    Except let's see how long it takes for the Firefox team to patch up these flaws as opposed to IE.

  3. Install by ms1234 · · Score: 2, Informative

    You could install NoScript addon... Great utility :)

  4. And... by Pacifist+Brawler · · Score: 2, Funny

    I remember reading about the memory leak. While others see this as a "failure" of the browser, I see it as increasing the odds that the browser exits and frees up your memory. I mean, how hard is it to re-open a browser?

    --
    IANA*
  5. Re:LOL IE Users! by paul248 · · Score: 2, Interesting

    I filed a bug for another DoS over a year ago and they still haven't fixed it:

    Crash Firefox

    The insta-crash only seems to work on Linux though.

  6. So funny by ZeroExistenZ · · Score: 2, Informative

    How slashdotters start pointing and laughing when there's a IE exploit, doesn't matter how big or small, and always the "workaround" is looked at as unacceptable.

    When it's about Firefox, they immediatly relativate it and minimalize it. "Oh, just install noscript", "tis just a small exploit", "well, why not restart your browser? If it crashes, so what? Why don't you click the icon again? You lazy bastard!"...

    I even read some comments, in reply that there's said IE 7 feels better then FF 2.0, that the faults in FF are acceptable. It's a complete double standard.

    For me, Firefox 2.0 is worthless; bloathed, crashes constantly, and is just not workable anymore. I've been using Firefox from the very start, but Firefox 2.0 make me switch to Opera.

    --
    I think we can keep recursing like this until someone returns 1
    1. Re:So funny by snero3 · · Score: 2, Insightful

      Personally I think the comments you are referring to come from a number of different factors

      1. Microsoft is often not the one to admit the security flaw. Where as Mozilla/firefox community is.
      2. Often Microsoft will denie the flaw pointed out in point number 1
      3. There have been numerous occurrences where an IE bug has allowed a whole PC to be taken over from bug that either MS denies exists or is very slow to patch. Holes like that in firefox generally get patched well before it is public knowledge.
      4. for the longest time IE was the ONLY browser that would work properly on a windows environment and MS thought that was a "fair and just" way to do business.
      5. Firefox is OSS, so you can go in there and fix/find the bug yourself where as with IE you have to rely on MS fixing it for you.

      As for you issues with it crashing I think that is a bit personal/related to your system? Come on! you swapped to a completed different browser after little over a week of use? I personal run firefox 2 on OS X, windows XP/2000 and Linux (FC4,RHEL4u3) and have had not problems on any platform, but maybe that is just me.

      --
      It said "windows 98 or better" so I installed Linux
    2. Re:So funny by molnarcs · · Score: 2, Interesting
      Agreed. I don't have a problem with the interface, but I can't imagine how shoddy the coding must be seeing the resources it needs to run. For older machines (I have to maintain a few in a comp lab) FF simply doesn't work, while Opera has no problems on the same machines (this are limited functionality FreeBSD boxes with fluxbox and a simplified menu). You won't notice how heavy Firefox is on relatively modern hardware, but as you go down to a PII (and to 64Mb RAM) - you'll find that Opera works fine, while FF is completely unusable. For kicks, I even installed kdebase, and called konqueror from fluxbox (meaning it had to load all the supporting libraries) - and it started up and ran faster than FF.

      I still have to use it though (flash only works well with linux-firefox on FreeBSD, in Konqi I don't have sound with youtube) - and just checked: 109Mb of memory usage, with only one tab open (this one). Basically that's how much memory the entire KDE uses after startup, xorg included. Isn't that ridiculous? I know I can set FF to use smaller memory cache, but that still mean 60-70Mb. There is something fundemantelly wrong with gecko (it must be gecko, because Epiphany and friends suffer from the same flaws), but there is little or no intention to fix that, because all the hype FF gets despite its flaws.

  7. There's a browser safer than Firefox... by Giorgio+Maone · · Score: 4, Interesting

    ... it is Firefox with NoScript :)

    I wrote this Firefox add-on just after one of these disclosures, because the majority of the browser vulnerabilities was JavaScript related, and the suggested work-around was always "turn off JavaScript".

    Disabling JavaScript as a whole seemed quite an impractical advice to me in this AJAXified Web 2.0: I thought that maintaining a white-list of trusted sites allowed to run JavaScript and keeping all the unknown web content "static" until I decided otherwise was a still safe but more convenient approach.

    Since then I've been browsing the web with my shields up (NoScript can block also Java, Flash and other plugins), but I allow on the fly with one click, either temporarily or permanently, those sites which I trust and which do need dynamic client side technologies to work properly. To my surprise in 1 year and half I found few sites belonging to this category, because most places I usually browse are well designed enough to work with plain XHTML/CSS and nothing else (like Slashdot itself).

    Notice: Firefox is a very safe browser because its vulnerabilities gets patched very quickly, once they're found by developers. I'm a Firefox contributor myself, and I'm very proud of the quality of the Mozilla developers community. NoScript, though, provides some extra protection even against those JavaScript/Java related vulnerabilities which have not been found yet...

    --
    There's a browser safer than Firefox, it is Firefox, with NoScript
  8. Third d.o.s. attack affects ALL BROWSERS! by suv4x4 · · Score: 3, Funny

    Immediately stop using Internet if you're using one of those browsers:

    IE
    Firefox
    Safari
    Konqueror .. ..

    A new denial of service attack was discovered floating in the cyberspace, that can render any browser inoperable, and it has to be forcefully crashed and reopened. The signature of the exploit was reported to be:

    while(true) alert('Hahaha, suckers!');

    People are advised to immediately move to Lynx: the only browser known to be immune to this attack.

  9. Issue shrinking (TM) technology by suv4x4 · · Score: 2, Funny

    The two "crashers" are the only publicly released vulnerabilities that have been confirmed by Mozilla in the week since Firefox 2 was launched. The issues are only minor, the organization has said...

    They also added, that the reason the issues are minor, is because Firefox 1.5x and later releases of the popular Mozilla browser feature a special "issue shrinking" technology, patent pending, where no matter what happens, the issue becomes small.

    This is opposition to Microsoft, which appears to ship all their products with "issue expanding" FUD generator technology, now considered by many specialists as obsolete, where never mind what's the trouble, it's blown out of proportions, and brings chaos and despair among geeky web users.

  10. Re:2.0 Good reasons to switch to Opera by Ash-Fox · · Score: 2, Insightful
    I'm a Opera user
    Good for you
    and i keep wondering why do ppl adamently use a software which keeps crashing
    Firefox v2 has only crashed once on me, when I tried to get it to crash on that bug. It's never crashed otherwise.
    yet they find a reason to either bash it (IE) or support it (FF fanboys) saying there is such and such workarounds.
    Well, the fact they suggest workarounds is a good thing in my opinion. It's good that there are workarounds.
    Why don't ppl switch to the browser with fewest bugs/security holes.
    Links doesn't provide what I need.
    Don't give me the crap by saying IE has lot of users so the attackers target IE.
    Alright, netcraft showed that Apache was the dominant webserver, yet the webserver that gets exploited the most is IIS -- This could be the case with other Microsoft software if they were put into that situation.
    While it may be true, a common security analyser like Secunia.com has identified fewest bugs in Opera compared to FF and IE.
    They've identified even fewer in Links.
    and yet the slashdot crowd is so much in love with FF.
    I can't speak for Slashdot, however I use Firefox (not always official mozilla builds) primarily because it runs on all the architectures I use. That includes PPC and ARM. It runs on most of the operating systems I use (unfortunately not on AmigaOS though). Also other browsers lack really important functions I need.
    and look at the comments above from FF fanboys, they just keep writing suggestions and saying how it is not a flaw.
    I see people saying it isn't a exploit. But rather something that causes a crash. A exploit meaning, "A hardware or software vulnerability that can be 'exploited' by a hacker to gain access to a system or service."
    If the posting had IE instead of FF, we would've seen hundreds of posts scolding IE and Bill.
    Could you show me a Slashdot article about a bug that causes IE to crash, no exploits. Just for comparison please.
    Talk about hypocrisy.
    Using your own logic, why aren't you using Links anyway? It's "the browser with fewest bugs/security holes".
    --
    Change is certain; progress is not obligatory.
  11. Re:LOL IE Users! by Richard+Steiner · · Score: 2, Insightful
    Make no mistake, a lot of people on here aren't so much pro-OSS as they are anti-MS.

    Of course. Remember that many of the PC hobbyists on this site predate the general acceptance of the FOSS movement, and that many of us remember Microsoft from their DOS and Win 3.1 days as well as their more recent attempts at world domination.

    After 20 years of dealing with that company, one tends to develop well-entrenched opinions about the quality of their software and the ethics (or lack thereof) behind Microsoft's business practices.

    --
    Mainframe/UNIX Bit Twiddler and long time Windows/Linux Hobbyist.
    The Theorem Theorem: If If, Then Then.