SillyDog701

[J-M]

It took less than a week when exploit code to fix Firefox 1.5.0.1 issue was released, this happened today:

Mozilla Firefox "location.QueryInterface()" Remote Command Execution Exploit code was released at http://www.frsirt.com/exploits/20060207 ... ace.pm.php and http://www.milw0rm.com/id.php?id=1474 , as a part of the Metasploit Framework Project.

Original Description from
http://www.mozilla.org/security/announc ... 06-04.html :

"Calling the QueryInterface method of the built-in Location and Navigator objects causes memory corruption that might be exploitable to run arbitrary code.

Solution:
Upgrade to the fixed version 1.5.0.1"

FrSIRT rated this as 'Critical', Secunia as 'Highly Critical'.

Details at Internet Storm Center's updated Diary entry too:
http://isc.sans.org/diary.php?storyid=1102

See informative Cert.org http://www.kb.cert.org/vuls/id/759273 advisory too.

UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fi-FI; rv:1.7.12) Gecko/20050919 Firefox/1.0.7

[J-M]

It seems that FrSIRT.com has updated its exploits section with new code release

http://www.frsirt.com/exploits/20060208 ... mac.pm.php (for Mac).

Code entry http://www.frsirt.com/exploits/20060207 ... ace.pm.php includes addition [for] (Linux) now as well.

And related http://www.mozilla.org/security/announc ... 06-04.html has an updated, Critical rating now.

There is no known exploit for Windows yet, but possibly we'll see it this week, unfortunately.

UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fi-FI; rv:1.7.12) Gecko/20050919 Firefox/1.0.7

[Antony]

J-M,

Is this the one exploit as mentioned in Exploit turns up heat for Firefox flaw (ZDNet 8 Feb 2006)?

UserAgent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/417.9 (KHTML, like Gecko) Safari/417.8

[J-M]

Yes, this is the same issue. One of the links in ZDNet article points to MFSA 2006-04 advisory.

UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fi-FI; rv:1.7.12) Gecko/20050919 Firefox/1.0.7