{"id":5601,"date":"2005-12-09T20:55:56","date_gmt":"2005-12-09T19:55:56","guid":{"rendered":"https:\/\/destinationcyber.com\/?p=5601"},"modified":"2005-12-09T20:55:56","modified_gmt":"2005-12-09T19:55:56","slug":"premiere-faille-de-securite-dans-firefox-1-5","status":"publish","type":"post","link":"https:\/\/destinationcyber.com\/?p=5601","title":{"rendered":"Premi\u00e8re faille de s\u00e9curit\u00e9 dans Firefox 1.5"},"content":{"rendered":"<p>Ce n&rsquo;\u00e9tait qu&rsquo;une question de temps : la premi\u00e8re faille de s\u00e9curit\u00e9 du tout r\u00e9cent Firefox 1.5, lanc\u00e9 par la Fondation Mozilla fin novembre, a \u00e9t\u00e9 d\u00e9couverte.<\/p>\n<p>Elle tient en quelques lignes de code Javascript dont le chargement dans une page Web suffirait \u00e0 interdire le red\u00e9marrage du navigateur.<\/p>\n<p>Une vuln\u00e9rabilit\u00e9 handicapante mais qui n&rsquo;implique pas la s\u00e9curit\u00e9 du reste de la plate-forme.<\/p>\n<p>C&rsquo;est un certain Ziplock qui, le 5 d\u00e9cembre dernier a priori, a d\u00e9montr\u00e9 la pertinence du concept (proof of concept) sur le site Packetstormsecurity.org.<\/p>\n<p>\u00ab\u00a0Cette vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 test\u00e9e [sous Windows XP SP2] et fonctionne, et aucun correctif n&rsquo;est disponible pour le moment\u00a0\u00bb, \u00e9crit John Bambenek.<\/p>\n<p>La faille est imputable \u00e0 la gestion des historiques de navigation qui provoque une sorte de d\u00e9bordement de m\u00e9moire tampon entra\u00eenant un d\u00e9ni de service (denial of service).<\/p>\n<p>Fanch<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Ce n&rsquo;\u00e9tait qu&rsquo;une question de temps : la premi\u00e8re faille de s\u00e9curit\u00e9 du tout r\u00e9cent Firefox 1.5, lanc\u00e9 par la Fondation Mozilla fin novembre, a \u00e9t\u00e9 d\u00e9couverte. Elle tient en quelques lignes de code Javascript dont le chargement dans une page Web suffirait \u00e0 interdire le red\u00e9marrage du navigateur. Une vuln\u00e9rabilit\u00e9 handicapante mais qui n&rsquo;implique [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_citadela_custom_class":"","footnotes":""},"categories":[15],"tags":[],"class_list":["post-5601","post","type-post","status-publish","format-standard","hentry","category-securite"],"_links":{"self":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts\/5601","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=5601"}],"version-history":[{"count":0,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts\/5601\/revisions"}],"wp:attachment":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=5601"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=5601"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=5601"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}