The latest version of Firefox has a DoS error
Security experts have discovered a new security flaw in the open source browser Firefox 1.5.0.3 that puts users at risk of denial of service (DoS) attacks.
This security error arises in the browser image processing cards.
SANS Internet Storm Center is the first agency to discover this security error. Conducting further research on the issue, SANS discovered that this security error could be used for 'dark' purposes - denial of service attacks.
Initially, the ability to exploit according to the analysis of experts was rejected and thought it was impossible to implement. Accordingly, an image containing a hyperlink, if opened, will launch a multi-media application to run a '.wav' file.
However, research experts have confirmed that an error similar to this could be exploited with JavaScript to create an email delivery application on the system that makes mistakes to open multiple windows at the same time. 'mailto:' command causes the system to hang.
Chris Mosby - administrator of myITforum.com forum - shared the experience of hacked attack via this security error with the user as follows: Firstly, disable the ability to automatically start the sender of email in Firefox. The second is to disable JavaScript and lock the mailto command.
The browser developer currently has no official comment about this security error.
Hoang Dung
- Mozilla launched Firefox 1.5.0.1
- Mozilla last upgraded for Firefox 1.5
- Mozilla patches Firefox
- Contact security error IE & Firefox
- Detects the second security error in Firefox 2
- IE7 and Firefox 2.0 share common points
- Firefox and Safari allow password security
- Officially released Firefox 2.0
- Where does the error 'Error 404' come from?
- Netscape fixes browser security errors
- Firefox will have a phishing shield
- Firefox 2.0 will be born next summer