A recent claim by hackers that Mozilla’s Firefox browser can be susceptible to a multiple code execution vulnerability may actually be just a hoax after all.The whole hoopla over the alleged code execution vulnerability started with a ToorCon presentation that was made by Mischa Spiegelmock and Andrew Wbeelsoi, two security researchers. The duo warned that the implementation of Firefox of JavaScript was badly flawed and it would make it possible to allow PC takeover attacks. But according to Mozilla’s engineers the risk may actually just be limited to a denial of service issue. Spiegelmock, who is a developer at blog software company Six Apart, is now saying that the ToorCon talk they gave was meant to be seen as humorous and he now insists that the code that they presented during the conference will not result in a code execution.
Mozilla’s security response team though is still treating it as a serious issue and will continue to investigate the claims.
[tags]Mozilla, Mozilla Firefox, Firefox, JavaScript, blog[/tags]