Security
Updates in Firefox 1.5.0.3
TITLE:
Firefox "contentWindow.focus()" Deleted Object Reference
Vulnerability
SECUNIA ADVISORY ID:
SA19802
RELEASE DATE:
2006-04-25
LAST UPDATE:
2006-05-03
VERIFY ADVISORY:
http://secunia.com/advisories/19802/
CRITICAL:
Highly critical
WHERE:
From remote
IMPACT:
DoS
System access
SOFTWARE:
Mozilla Firefox 1.x
DESCRIPTION:
A vulnerability has been reported in Firefox, which can be
exploited by malicious people to cause a DoS (Denial of Service)
and potentially compromise a user's system.
The vulnerability is caused due to a reference
to a deleted object when designMode is enabled. This can be
exploited to corrupt the memory and cause a crash by calling
the "contentWindow.focus()" method on a container
with specially crafted content.
Successful exploitation may allow execution
of arbitrary code.
The vulnerability has been reported in versions
1.5 through 1.5.0.2.
SOLUTION:
Update to version 1.5.0.3.
http://www.mozilla.com/firefox/
REPORTED BY CREDITS:
Martijn Wargers, Nick Mott, splices, spiffomatic64, and Securident
Technologies.
|