Fergie's Tech Blog: Mozilla Firefox 1.0.3 Remote Arbitrary Code Execution Exploit

Saturday, May 07, 2005

Mozilla Firefox 1.0.3 Remote Arbitrary Code Execution Exploit

FrSIRT (French Security Incident Response Team) reports that:

This is a 0-day exploit/vulnerability (unpatched). This code will download/execute a malware without user interaction.

Rated as : Critical

Solution : Disable Javascript

2 Comments:

At Sat May 07, 07:28:00 PM PDT, Anonymous said...: are there any reports of any malicious websites using this or emails with link to lure people into visiting?
At Sun May 08, 07:37:00 AM PDT, Anonymous said...: thanx to some dumbfuck on irc who thinks he can gain fame by dlaping his name on a 0day firefox exploit, real credit goes to Paul from greyhats : http://illmob.org/files/0day/firefox-download-and-execute.html