The critical vulnerability in Firefox 3.5’s Just-in-time (JIT) JavaScript compiler was patched with the release of Firefox 3.5.1 just before the weekend.
A remote stack-based buffer-overflow vulnerability reported July 15, 2009 has now been confirmed in Firefox 3.5.1. At this time there is no patch.
Reference: The Tech Herald
Update
Mozilla Security Blog
milw0rm 9158 “stack overflow†crash not exploitable (CVE-2009-2479)
07.19.09 – 02:44pmIn the last few days, there have been several reports (including one via SANS) of a bug in Firefox related to handling of certain very long Unicode strings. While these strings can result in crashes of some versions of Firefox, the reports by press and various security agencies have incorrectly indicated that this is an exploitable bug. Our analysis indicates that it is not, and we have seen no example of exploitability.
