1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Emergency Bulletin: Firefox 0 day in the wild. What to do.

Discussion in 'BlackHat Lounge' started by Nut-Nights, Nov 30, 2016.

  1. Nut-Nights

    Nut-Nights Jr. VIP Jr. VIP

    Joined:
    Jun 20, 2013
    Messages:
    5,296
    Likes Received:
    3,372
    Location:
    Hell
    Home Page:
    • Thanks Thanks x 4
  2. xbryan

    xbryan Senior Member

    Joined:
    Jul 12, 2015
    Messages:
    890
    Likes Received:
    214
    im using firefox... im not hacked yet
     
  3. bartosimpsonio

    bartosimpsonio Jr. VIP Jr. VIP Premium Member

    Joined:
    Mar 21, 2013
    Messages:
    12,476
    Likes Received:
    11,180
    Occupation:
    CHEAP
    Location:
    DATASETS
    Home Page:
    > Currently it exploits Windows systems

    You guys haven't switched to Ubuntu yet? After the Windows 10 catastrophe?
     
  4. Paranoid Android

    Paranoid Android Jr. VIP Jr. VIP

    Joined:
    Jun 20, 2010
    Messages:
    1,718
    Likes Received:
    2,432
    Gender:
    Male
    Occupation:
    Pantie Thief
    Location:
    Native America
    Windows 10 Catastrophe? Isn't it supposed to be fairly good? I'm on a mac though
     
  5. Neon

    Neon Jr. VIP Jr. VIP

    Joined:
    Nov 3, 2013
    Messages:
    2,837
    Likes Received:
    6,881
    Gender:
    Male
    Occupation:
    Traveling the world
    Location:
    Berlin
    Long live Kali Linux!!!
     
    • Thanks Thanks x 2
  6. bartosimpsonio

    bartosimpsonio Jr. VIP Jr. VIP Premium Member

    Joined:
    Mar 21, 2013
    Messages:
    12,476
    Likes Received:
    11,180
    Occupation:
    CHEAP
    Location:
    DATASETS
    Home Page:
    Nooooooo. It's not even close to fairly good mate. It is a major league catastrophe. Good for you, Macs are still cousins with Linux.

    PS. Mods or admins can check the user agent I access BHW with and see it's been Linux for years.
     
  7. Nut-Nights

    Nut-Nights Jr. VIP Jr. VIP

    Joined:
    Jun 20, 2013
    Messages:
    5,296
    Likes Received:
    3,372
    Location:
    Hell
    Home Page:
    Guys i am using Windows 2000,I need to worry about this exploit ?
     
    • Thanks Thanks x 1
  8. Paranoid Android

    Paranoid Android Jr. VIP Jr. VIP

    Joined:
    Jun 20, 2010
    Messages:
    1,718
    Likes Received:
    2,432
    Gender:
    Male
    Occupation:
    Pantie Thief
    Location:
    Native America
    I was using ubuntu since version 6.06 to 12.04. Switched to mac when they switched from gnome to Unity and when i got my first iPhone. Never knew this about Windows, quit that piece of shit over 10 years ago.
     
  9. Jason Starkey

    Jason Starkey Regular Member

    Joined:
    Jul 3, 2016
    Messages:
    337
    Likes Received:
    62
    Gender:
    Male
    Occupation:
    Freelancer
    Location:
    USA
    Maybe you are just spoofing your user agent :)
     
    • Thanks Thanks x 2
  10. BassTrackerBoats

    BassTrackerBoats Super Moderator Staff Member Moderator Jr. VIP

    Joined:
    Mar 10, 2010
    Messages:
    16,691
    Likes Received:
    30,712
    Occupation:
    Selling CPA Sites
    Location:
    Not England
    Home Page:
    Windows 2000?
     
  11. bartosimpsonio

    bartosimpsonio Jr. VIP Jr. VIP Premium Member

    Joined:
    Mar 21, 2013
    Messages:
    12,476
    Likes Received:
    11,180
    Occupation:
    CHEAP
    Location:
    DATASETS
    Home Page:
    Could've been, if I had reason to hide anything from BHW admins.

    But I don't - it's legit.

    Recently I changed from Fedora to Ubuntu which is updated more often.

    When I need Windows I run it in a window, under Linux ;)
     
    • Thanks Thanks x 1
  12. Reaver

    Reaver Jr. VIP Jr. VIP

    Joined:
    Aug 6, 2015
    Messages:
    1,904
    Likes Received:
    5,459
    Gender:
    Female
    I'm fairly certain Windows 10 is just Windows 2000 repackaged.
     
  13. Nut-Nights

    Nut-Nights Jr. VIP Jr. VIP

    Joined:
    Jun 20, 2013
    Messages:
    5,296
    Likes Received:
    3,372
    Location:
    Hell
    Home Page:
    • Thanks Thanks x 1
  14. BassTrackerBoats

    BassTrackerBoats Super Moderator Staff Member Moderator Jr. VIP

    Joined:
    Mar 10, 2010
    Messages:
    16,691
    Likes Received:
    30,712
    Occupation:
    Selling CPA Sites
    Location:
    Not England
    Home Page:
    The nice thing about Windows 10 is that it updates every 28 minutes!

    You can really see MSFT giving great support there.
     
    • Thanks Thanks x 2
  15. Des_cartes

    Des_cartes Junior Member

    Joined:
    Jan 19, 2012
    Messages:
    160
    Likes Received:
    64
    Guys it's a de-anonymization exploit, nothing to worry about for every day usage.
     
  16. Reaver

    Reaver Jr. VIP Jr. VIP

    Joined:
    Aug 6, 2015
    Messages:
    1,904
    Likes Received:
    5,459
    Gender:
    Female
    Idk about anyone else, but that makes me feel both secure and safe.
     
    • Thanks Thanks x 1
  17. Nut-Nights

    Nut-Nights Jr. VIP Jr. VIP

    Joined:
    Jun 20, 2013
    Messages:
    5,296
    Likes Received:
    3,372
    Location:
    Hell
    Home Page:
    [​IMG]
     
    • Thanks Thanks x 2
  18. Jason Starkey

    Jason Starkey Regular Member

    Joined:
    Jul 3, 2016
    Messages:
    337
    Likes Received:
    62
    Gender:
    Male
    Occupation:
    Freelancer
    Location:
    USA
    Its 5am, i just felt like being a pain haha!
     
  19. jazzc

    jazzc Moderator Staff Member Moderator Jr. VIP

    Joined:
    Jan 27, 2009
    Messages:
    2,612
    Likes Received:
    11,239
    Occupation:
    Pusillanimous Knitter
    Location:
    Buenos Aires
    Are you insane? It breaks into kernel32.dll and executes code locally. Doesn't matter what the discovered variant does.
     
    • Thanks Thanks x 4
  20. bartosimpsonio

    bartosimpsonio Jr. VIP Jr. VIP Premium Member

    Joined:
    Mar 21, 2013
    Messages:
    12,476
    Likes Received:
    11,180
    Occupation:
    CHEAP
    Location:
    DATASETS
    Home Page:
    Ouch. If I remember correctly back from my Windows days, kernel32.dll runs in "ring 0" and is allowed to do anything on a PC. I bet every intelligence agency in the world is hustling to make a spything based on this.

    Did i mention Linux yet ;) ?
     
    • Thanks Thanks x 1