Firefox “Lambda Replace Heap Memory” Security Flaw Reveals Sensitive User Information - 1,358 Views, 1 Comment

Summary: A security flaw known as the "JavaScript Lambda Replace Heap Memory Disclosure Vulnerability" has been found in the popular Firefox web browser. Firefox is an open source web browser which is available for Windows, OS X, and Linux, and which has experienced ...

Previous Article « Aunty’s Readers Sound Off About the FCC Broadcast Flag
Read Next Article » Unexpected Online Greeting Cards May Carry Trojan Horses

Firefox “Lambda Replace Heap Memory” Security Flaw Reveals Sensitive User Information Follow Anne on Twitter Friend Anne on Facebook

A security flaw known as the “JavaScript Lambda Replace Heap Memory Disclosure Vulnerability” has been found in the popular Firefox web browser. Firefox is an open source web browser which is available for Windows, OS X, and Linux, and which has experienced significant adoption in the past 18 months.

The new security flaw, which compromises the user’s “heap memory”, was discovered and announced by security company Secunia. While not exploitable by phishers or hackers seeking to gain access to the user’s computer, it can expose sensitive information both received from and entered in at websites which the user has visited.

Explained Thomas Kristensen, CTO of Secunia, “Unlike other browser flaws, this one is not subject to phishing or access to the system. But it can expose sensitive information from other websites you visited and the information you entered there.”

The Mozilla Foundation, which created Firefox, is working on a patch. In the meantime, Secunia has created a test which users can use to determine whether their system is at risk for exposure through the flaw. If so, Secunia recommends disabling JavaScript support on the user’s system until the Mozilla Foundation releases a patch.

Was this information helpful? If so, please leave us a review!

SHARE:	Firefox “Lambda Replace Heap Memory” Security Flaw Reveals Sensitive User Information
SOCIAL:	Friend Anne on Facebook Follow Anne on Twitter Twitter Explained in Plain English
SEARCH:

Leave a Comment

Previous Article « Aunty’s Readers Sound Off About the FCC Broadcast Flag
Read Next Article » Unexpected Online Greeting Cards May Carry Trojan Horses

Read more:

» Firefox Flaw Found and Fixed (Get the Patch)

» Firefox and Mozilla Still at Risk for Spoofing “Frame Injection” Security Flaw

» Sony BMG Reveals New Security Flaw: MediaMax Software on 5.7 Million CDs

» New Critical Internet Explorer (IE) Flaw Involves Msdds.dll

For additional similar stories check out our archives on Security

NOTE: We never, ever, ever will recommend any product or service on this site that we have not regularly used ourselves and do not wholeheartedly believe in. That said, in some cases after being very pleased with a product or service, we may enter into a relationship with the provider of that product or service such that if someone purchases that product or service based on our recommendation, we may get a small payment. Such payments go towards the upkeep of the Internet Patrol.

1 Comment »

Thanks

Comment by Lyle — 4/7/2005 @ 7:35 am

RSS feed for comments on this post.

Leave a comment

Warning! All comments which contain URLs and are clearly just spam to generate a link back to the URL will be deleted on sight. Don't bother wasting your time!
If you are going to include a URL in your comment,
please keep it under 25 characters in length,
or use TinyURL to shorten it before including it in your comment.
Line and paragraph breaks are automatic, your email address is never displayed.

This article first appeared on 4/6/2005

About

Follow Anne On:

Twitter
Linked In
Facebook

*Twitter Explained in Plain English

Search
Categories

Recent Comments to Our Articles

joslks: i have kohls gift card worth of 190$. trade with amazon, bed bath and beyond,Williams-Sonoma read

Rob: Of course. Pirating is the wave of the decade. I get screwed no more. read

terry: verizon has been blocking my emails for a long time now, and it's getting worse. it's part of the homeland security thing. i hate to read

sunil kumar: hi sir i lost my mobile on 16/02/2010 ,plzz help me to locate my mobile,can u tell me the exact location of my mobile i.e Nokia read

k.francis: good morning sir my name is francis i have one mobile and new mobile.yesterday some please drinker drive the auto they was asked me please read

"gunner": no thanks "chatroulette" i'll take a pass on this timewaster. i don't mind a bit of well done adult porn now and then, but this read

Mark: I do agree with you laugher, I really didn't expect immediate turn around myself, I merely wanted to get my situation heard to make sure read

Jan: Some of the mentioned names are known and it might be useful to look up at www.boiler-rooms.co.uk for entry of shamethem 'Possibly Fraud' regards read

David: The Barny Fife syndrome. read

Hal Brown: Thanks Anne. This is good info to have available. I've been lucky so far, but it can't last forever. read

laugher: amazing how ppl can scream at a free service they use & abuse... hey guys: YOU GET WHAT YOU PAY FOR! and if youre doing read

Fernanda: Thank you very much, my blog was attacked this morning by this hacker and I did what you told and it´s Ok now Fernanda read

pranay: plzzzzzzzzz........ hi sir i lost my mobile on 24/12/2009 ,plzz help me to locate my mobile,can u tell me the exact location of my mobile i.e SONY read

pranay: hi sir i lost my mobile on 24/12/2009 ,plzz help me to locate my mobile,can u tell me the exact location of my mobile i.e SONY read

NISHANT SHARMA: pls find out how is doing msg from this no 8950617858 read

Search

17213 feed subscribers

Last 3 Articles

Chatroulette Exposed - Russian Roulette Video Chat Site with Pervs Instead of Bullets in the Chamber

New! Amazon Kindle for Mac Application! And it's Free!

Twitter Password Reset Email Not Necessarily Phishing But Decidedly Clueless

Top Ten Articles

Is Your Cell Phone Transmitting Your Location? Cell Phone Tracking, Location Privacy and e911 - 453,125 Views

How to Connect Your Computer to the Internet Using Your Cell Phone as a Wireless Internet Connection or Tethered Modem - 290,973 Views

What the Error “This device cannot start. Code 10 in audio driver” Means - 187,771 Views

Hotmail Outage as Server Goes Down, Users Unable to Access Email - 170,283 Views

Yes, You Can Download All of Your iTunes Purchases Again - 140,841 Views

Track Your Lost or Stolen Cell Phone with PinTail! - 130,550 Views

Don’t Drink and Carry Nude Pictures of Yourself on your Cell Phone - 117,648 Views

FlexiSpy Cell Phone Tapping Software - 107,865 Views

X-ray Vision Becomes a Reality! Camera Lens Lets You See Through Clothes! - 106,544 Views

Free Online Christmas Music on the Internet with Online Radio Stations Playing Christmas Music - 102,487 Views

Full List of Categories

Amazon
AOL
Apple & Mac
Around the World
Bargains
Bluetooth
Boneheads
Books
Cell Phones
Cyberbullying
eBay
Email
Email Hosting
Everything Else
Facebook
File Sharing & P2P
G1 Google Phone
Gaming
Good Guys
Google
Gotchas
GPS
Hacking
Handhelds & PDAs
Hotmail
Identity Theft
Instant Messengers
Internet Explorer
Internet Law
Internet Marketing
Internet Providers
Internet Television
Internet Video
iPods & MP3
Just Plain Wrong
Microsoft
Music Download
MySpace
Oddities
Online Dating
Over 18
Paypal
Phishing
Pirates
Podcasting
Privacy
Reviews
RFID
Scams
Security
Sidekicks
SMS
Social Networking
Society
Spam
Spam Blockers
Spam Whacks
Spyware & Adware
Text Messaging
Tivo & ReplayTV
Twitter
Useful & Fun Stuff
Video Downloads
Virus & AntiVirus
VoIP
What Do You Think?
Windows
Wireless Wifi
Worms
Yahoo

The Internet Patrol
Patrolling the Internet for You!