Threat Level: green Handler on Duty: Jan Kopriva

SANS ISC: New Firefox Vulnerability(?) SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
New Firefox Vulnerability(?)

Today on Bugtraq a message was posted that listed a possible vulnerability in Firefox  Several attempts by various Handlers were unable to determine that a new vulnerability actually exists.  The link posted to Bugtraq took us to a web page that was purported to run the exploit, which did not appear to work.  Stay tuned for further details.

The "exploit" appears to be a simple link to an audio file (claims to be an image). If you, as instructed by the exploit page, open the "image", you will launch your media player and load a local .wav file. Nothing actually "bad" about that as far as we can tell, so this is probably just a joke to point out some of the social engineering aspects of hyperlinked media.


150 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!