Abuse Melding

Je hebt een klacht over de onderstaande posting:

11-07-2014, 15:50 door Anoniem

Meer details in http://www.theregister.co.uk/2014/07/11/firefox_lzo_rce/: wat ik daaruit opmaak is dat de exploit getoond in het filmpje gebruik maakt van de LZO bug in gecko-mediaplayer, die kennelijk door sommige Linux distro's standaard in Firefox (en mogelijk andere browsers) wordt meegeleverd: By Darren Pauli, 11 Jul 2014 : Bailey's demo of the Mplayer2 plugin shows a vulnerability that can trigger remote code execution (RCE) by way of a Nyan Cat image reel displayed on an updated version of FireFox version 30. It was revealed the vulnerability could trigger an integer overflow vulnerability that caused a denial of service or buffer overflow resulting in remote code execution under specific conditions. "This is not a Firefox attack," Bailey said. "I said [in a blog] I would be releasing an Mplayer2 app, and pointed at gecko-mediaplayer being straight-up vulnerable." "My concern is that these apps/plugins are installed by default on some distributions of Linux." Firefox zelf zou in sommige versies ...

Beschrijf je klacht (Optioneel):

captcha
Nieuwe code
Klacht Versturen
Zoeken
search