Firefox 1.5 Exploit Code in the Wild

By Nate Mook
Published 20 years ago

Proof of concept exploit code for an unpatched security flaw in the newly released Firefox 1.5 was publicly posted Wednesday by Packetstorm Security. The problem involves Firefox's history database, which cannot handle extremely long page topics. A malicious Web page could cause a buffer overflow that crashes Firefox each time it is started.

The only way to fix the problem is to manually delete the history.dat file before Firefox is started. "This vulnerability has been tested and does work, and no known patches are available at this time," wrote John Bambenek on the SANS Internet Storm Center. "Presumably, if the topic was more tightly crafted than in the proof-of-concept code, a more malicious attack could be crafted that would install malware on the machine."

54 Responses to Firefox 1.5 Exploit Code in the Wild

Got News? Contact Us

Recent Headlines

Google improves Android with a bumper crop of new accessibility features

Microsoft releases KB5070311 update to fix a bunch of Windows 11 issues – and it has problems

New AI assisted tool aims to cut manual processing time for complex PDFs

Visa finds shoppers turning to AI and crypto this holiday season

File-sharing platforms not protecting against malicious content

Rapid adoption of agentic AI runs ahead of security readiness

Experian: Cyber threats are no longer just about stealing data, they're about manipulating reality

Why Trust Us

At BetaNews.com, we don't just report the news: We live it. Our team of tech-savvy writers is dedicated to bringing you breaking news, in-depth analysis, and trustworthy reviews across the digital landscape.

Firefox 1.5 Exploit Code in the Wild

54 Responses to Firefox 1.5 Exploit Code in the Wild

Recent Headlines

Google improves Android with a bumper crop of new accessibility features

Microsoft releases KB5070311 update to fix a bunch of Windows 11 issues – and it has problems

New AI assisted tool aims to cut manual processing time for complex PDFs

Visa finds shoppers turning to AI and crypto this holiday season

File-sharing platforms not protecting against malicious content

Rapid adoption of agentic AI runs ahead of security readiness

Experian: Cyber threats are no longer just about stealing data, they're about manipulating reality

Most Commented Stories

Dell has some terrible news for Microsoft about Windows 10

Power availability shapes future data center plans

Google will make it easy to switch to vertical tabs in Chrome

How biometrics are reshaping authentication [Q&A]

The invisible attack that could be stealing your payment details while you shop

Spotify has a price increase planned for early 2026

AI browser Opera Neon gains new tools and Gemini 3 and Nano Banana support

How LLMs could revolutionize ad blocking

Why Trust Us

Categories

Quick Links