Avatar for Username

Prohledat stránky podpory

Vyhněte se podvodům. Za účelem poskytnutí podpory vás nikdy nežádáme, abyste zavolali nebo poslali SMS na nějaké telefonní číslo nebo abyste sdělili své osobní údaje. Jakékoliv podezřelé chování nám prosím nahlaste pomocí odkazu „Nahlásit zneužití“.

Zjistit více

Toto vlákno bylo archivováno. Pokud potřebujete pomoci, založte prosím nový dotaz.

Malware webm using unknown exploit [test&report to developers]

  • 1 odpověď
  • 2 mají tento problém
  • 1 zobrazení
  • Poslední odpověď od user709721

MalwareWebM
MalwareWebM
more options

Hello! I found a malware webm that crashes firefox if you open it. WebM is attached to this post: https:/2ch.hk/s/res/1065365.html#1073228

According to user from the thread above, it crashed his FF with message:

out of memory: 0xFFFFFFFFFFFFFFFF bytes requested zsh: segmentation fault (core dumped) firefox

Unfortunately, no other info was provided. I created a thread on mozillazine: http://forums.mozillazine.org/viewtopic.php?f=38&t=2884157 And it was confirmed by user osceola that his FF31.2.0ESR crashed when he opened this webm. So, I created this thread for two reasons: 1. Maybe someone will test this exploit with other FF versions like 33.0.2 2. Report this exploit to developers

Also, Mozilla has already fixed webm exploit in 33 and ESR31.2 but it looks like it was not enough: https://www.mozilla.org/security/announce/2014/mfsa2014-77.html

Hello! I found a malware webm that crashes firefox if you open it. WebM is attached to this post: https:/2ch.hk/s/res/1065365.html#1073228 According to user from the thread above, it crashed his FF with message: out of memory: 0xFFFFFFFFFFFFFFFF bytes requested zsh: segmentation fault (core dumped) firefox Unfortunately, no other info was provided. I created a thread on mozillazine: http://forums.mozillazine.org/viewtopic.php?f=38&t=2884157 And it was confirmed by user osceola that his FF31.2.0ESR crashed when he opened this webm. So, I created this thread for two reasons: 1. Maybe someone will test this exploit with other FF versions like 33.0.2 2. Report this exploit to developers Also, Mozilla has already fixed webm exploit in 33 and ESR31.2 but it looks like it was not enough: https://www.mozilla.org/security/announce/2014/mfsa2014-77.html

Všechny odpovědi (1)

user709721
user709721
more options

Hi,

The people who answer questions here, for the most part, are other Firefox users volunteering their time (like me), not Mozilla employees or Firefox developers.

If you want to leave feedback for Firefox developers, you can go to the Firefox Help menu and select Submit Feedback... or use this link. Your feedback gets collected at http://input.mozilla.org/, where a team of people read it and gather data about the most common issues.

Hope this helps!

Curtis Parfitt-Ford Mozilla Support