A vulnerability has been discovered in various Mozilla products, which can be exploited by malicious people to gain knowledge of potentially sensitive information.
Please see the test below for an example of how this vulnerability can be exploited.
Test Case / Demonstration
Click the link below in order to test whether or not your system is vulnerable. The test will read arbitrary memory and display most of the printable characters from the memory chunk.
Each time you click the link below, 10 kilobyte of memory will be read and most printable characters will be displayed below.
Below is an example of what can be found. new results and info with each click.
Code:' 4 w A ' ; W 5 5 V : ; = : E 5 V : V 5 V 5 5 V V 6 d 1 mousedown m 5 T 6 5 5 W V 5 D V 5 m 5 T 6 5 5 W V 5 D V 5 m 5 T 6 5 5 W V 5 D V 5 V nt /w / 3 m 5 T 6 5 5 W V 5 D V 5 D m 5 T 6 5 5 W V 5 D V 5 1' Are you sure you want to delete this security module? Unable to delete module sInternal security module successfully deleted sExternal security module successfully deleted 1 You should make a password-protected backup copy of your new security certificate and its associated private key. 2 If you ever lose access to your private key by forgetting your personal security password or by experiencing file corruption you can restore this private key and certificate from this backup copy. 3 To make a copy click OK. If possible you should save your backup copy on a floppy disk that you keep in a safe location. r (Unknown Issuer) (Unknown Organization) e%S = %S dYou cannot connect to %S because SSL is disabled. You cannot connect to %S because SSL version 2 is disabled. %S and %S cannot communicate securely because they have no common encryption algorithms. 3 A I wm arial ao_sut ' : P " " / 7 a " showthread.php?mode=hybrid&t=14832 parentNode 0 . ) return imwindow('yahoo' '232' 400 200) ' 9 serif a & tahoma verdana geneva lucida 'lucida grande' arial helvetica sans-serif serif & p #p verdana geneva lucida 'lucida grande' arial helvetica sans-serif serif robat XML Data Package # removeAllRanges ( o L