Only a week after disclosing a new web code exploit that can cause an iPhone to crash, security researcher Sabri Haddouche, has uncovered another browser bug that can force Firefox to crash on all three popular desktop operating systems – Mac, Linux and Windows – reports ZDNet.
According to ZDNet, the bug not only crashes the browser on a Windows machine, it also occasionally freezes the entire operating system, requiring users to perform a hard reboot. Mobile platforms seem safe from the exploit, however, and tests performed by ZDNet have confirmed that Firefox on Android and iOS are not affected.
After #Mailsploit, releasing #BrowserReaper so you can kill your browser.More information: https://t.co/9Ls3AKps72September 23, 2018
In explaining how the exploit works, Haddouche told ZDNet that “the script generates a file (a blob) that contains an extremely long filename and prompts the user to download it every one millisecond”.
“It, therefore, floods the IPC (Inter-Process Communication) channel between Firefox’s child and main process, making the browser at the very least freeze,” he added.
Haddouche has notified Mozilla of the new exploit, which comes hot on the heels of the release of Firefox 62 – which itself contained 13 significant bug fixes. It’s already been added to the internet company’s bug tracking platform and Firefox users can find out more about the progress on a fix there.
"It's not as cool as it sounds," said Jason Trost, CEO of the London-based betting company Smarkets, when asked about his company's unusual policy of letting employees pick how much they'd like to be paid. "It's a crazy process," he said. "But it does work." It was about three years ago that Trost introduced a...
With the launch of the original iPhone, the mobile/cellular phone industry was forever changed. The term 'smartphone' had now entered the cultural lexicon, ushering in a new age in which the human race's collective knowledge was now available right from our pockets.Of course, it wouldn't be long before a worthy competitor would offer its own...