Computeractive > News > Bugs & Fixes

Print :

Discuss :

A security expert who claimed to have discovered a critical vulnerability in the open source Firefox browser has retracted his original claims

A hacker demonstrated what he claimed was a JavaScript vulnerability in Firefox

R E L A T E D C O N T E N T

Free email newsletters

Jargon Buster

ADVERTISEMENT

Firefox hacker exposed as a fraud

Reported Firefox flaw incapable of remote code execution, hacker admits

Tom Sanders in California, vnunet.com 04 Oct 2006

ADVERTISEMENT

advertisement

A security expert who claimed to have discovered a critical vulnerability in the open source Firefox browser has retracted his original claims.

Mischa Spiegelmock demonstrated what he claimed was a JavaScript vulnerability in Firefox at the ToorCon hacker conference in San Diego over the weekend.

He said that the flaw could allow for remote code execution, and boasted that he knew of at least another 30 undisclosed vulnerabilities.

Spiegelmock has now admitted to Mozilla that the security vulnerability would only crash the browser and that he had been unable to execute arbitrary code.

"The main purpose of our talk was to be humorous. I do not have 30 undisclosed Firefox vulnerabilities, nor did I ever make this claim," he said in a statement that was posted on the Mozilla website.

"I have no undisclosed Firefox vulnerabilities. The person who was speaking with me made this claim, and I honestly have no idea if he has them or not. I apologise to everyone involved, and I hope I have made everything as clear as possible."

Prior to Spiegelmock's confession, Mozilla security chief Window Snyder had reported that the vulnerability was incapable of allowing remote code execution.

Snyder said that, despite the limited risk to end users, the software developer still takes the issue seriously and will continue its investigation.

All Bugs & Fixes

Like this story? Spread the news by clicking below:

del.icio.us

Digg this

Permalink for this story

R E A D E R C O M M E N T S

Post your comment What is this?

M A R K E T P L A C E

Sponsored links

F E A T U R E D J O B S

Architect - Midrange / Unix

Milton Keynes, Buckinghamshire, United Kingdom | EDS

Job Description To be primarily an expert in a particular technology (Midrange UNIX), LINUX and use the knowledge to architect infrastructure solutions for clients. Role To produce customised midrange solutions for clients. Where solutioning cannot ... more >

Database Administrator ( DBA )

Newcastle, Tyne And Wear, United Kingdom | EDS

About EDS EDS provides a broad portfolio of business and technology solutions to help its clients worldwide improve their business performance. EDS' core portfolio comprises information-technology and business process outsourcing services, as well as information-technology ... more >

Administrative Computing Unit- Programmer/Analyst (Content Management System)

United Kingdom | Swansea University

Programmer/Analyst (Content Management System), £25,135 - £28,290 pa Administrative Computing Unit Joining an established team your role is to develop and enhance the University's use of the Terminal-Four Content Management System. Working closely with technical ... more >

Software Developer/SQL Specialists

United Kingdom | MI5 Security Service

Software Developer/SQL Specialists Working for MI5 you will use your expertise to protect the UK from terrorism, espionage and other threats to national security. You'll be joining a team that provides essential technical analysis and ... more >

More job opportunities

Useful links: About us . Privacy policy . Terms & conditions . Site map . Bookmark this site . Advertise

Consumer Technology websites:

Active Home Product reviews, competitions, news

Computeractive Software reviews, hardware reviews, buyers' guides, workshops, downloads

Gizmodo the daily gadget blog: technology news and reviews

PC Magazine your personal guide to technology

PCW software product reviews, hardware product reviews, buyers' guides, competitions

WebAct!ve what's happening on the web

What PC? helping you purchase the right computer, digital camera, peripherals, gadgets and more

Blogs:

Test Bed The PCW Labs blog, PCW Inter@ctive A reader blog from PCW. Your views, your comments, your say, Windows Watch Keeping an eye on the latest XP % Vista news

Jobs & Recruitment websites:

Accountancy Age Jobs Accountant jobs, jobs in finance, audit jobs, cima jobs, acca jobs, corporate finance jobs, management accounting jobs, finance director jobs, finance recruitment agency directory, Top 50 accountancy firms, accountant salary survey
Computing Careers IT jobs, Programmer jobs, Developer jobs, IT manager jobs, Project manager jobs, SAP jobs, Oracle Jobs, Java Jobs, IT recruitment agency directory, Top IT Employers 2005
Inquirer Jobs Software Engineer Jobs, firmware developer jobs, electronics engineer jobs

Other titles in the Incisive Media network:

Business Technology websites: BusinessGreen . Computing . Computing Business . CRN . The Inquirer . IT Week . vnunet.com
Business & Finance websites: Accountancy Age . Best Practice . Financial Director . Management Consultancy

© Incisive Media Ltd. 2008
Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503

ADVERTISEMENT

advertisement