Last Updated: 2009-07-16 17:54:23 UTC
by Swa Frantzen (Version: 4)
Updated story, thanks to for helping figure it out!
The mozilla security blog confirms an exploit against an unpatched vulnerability Firefox 3.5 exists and has been made public.
Do note that Heisse tried to confirm the vulnerability and only managed a crash on Vista and can't seem to make it work on Windows 7 RC1
The mozilla blog above has a workaround by temporary disabling the
Swa Frantzen -- Section 66
Dean wrote in to say that this exploit has been spotted in the wild. The attacked just used Metasploit to create it and put a PoisonIvy client as the payload. Unfortunately, the payload has been packed with a packer that prevented some AV vendors so the detection isn't all that great.
Good news is that NoScript will protect you against it, but also that it takes some time for the exploit to execute (in a lot of cases the user is prompted by Firefox that a script on the page is running too long); it also does not appear to be 100% reliable.