Milw0rm is finally back with some new interesting informations and exploits , one of then is Firefox 3.5 Zero Day exploit! the exploit has been published on milw0rm yesterday. The firefox 3.5 zero day exploit itself simply demonstrates a security vulnerability that existed on firefox 3.5 by loading windows calculator. The most preventive way to take is by disabling javascript on firefox 3.5 , otherwise your pcs might get infected!

Excerpt :

The exploit portal Milw0rm has published an exploit for Firefox 3.5. The exploit demonstrates a security vulnerability by starting the Windows calculator. In testing by heise Security, the exploit crashed Firefox under Vista, but security service providers Secunia and VUPEN confirmed that attackers using prepared websites can infect PCs. The cause of the problem is a buffer overflow when processing specially prepared Font tags.

The Mozilla Foundation has been informed about the problem, but so far has not responded to queries by heise Security. An update does not currently exist. So far there are no reports of sites on the internet being first to use the hole for active infections and exploitation of Windows PCs. Since the published exploit uses PC heap spraying under JavaScript, disabling JavaScript should act as a stop gap. When the exploit was tested with Windows 7 RC1, after a short time, the browser displayed a dialogue offering to abort the script.

Download firefox 3.5 zero day Exploit : http://www.milw0rm.com/exploits/9137

Related articles :

• Highly Critical Security Vulnerability Found in Firefox 3. (mashable.com)
• Firefox 3.5 vulnerable to critical Javascript attack (macworld.com)
• Firefox users: critical security vulnerability (consumingexperience.com)

There are some vista reg cleaner out there. Some of those windows vista registry cleaners might work well but the others don’t work well. Based on my research of the downloadbale vista reg cleaner , I would like recommend you to use some of vista reg cleaner tools that listed in this article But remember , since I’ve only been using ubuntu , i don’t really have any experience of using any of these vista reg cleaner tools.

Some of tools you might try are such as

- pc tools registry

- CleanMyPcRegistry

- jv16 power tools

- Digeus registry cleaner

- PC-Kitchen’s Registry cleaner

If you want to recommend another vista registry cleaners , please comment this post

Affiliate:

CLICK HERE TO EDUCATE YOURSELF ABOUT US HEALTH INSURANCES

Image by Getty Images via Daylife

Since MS08-067 exploit ’s published , there are a lot of mass exploitation to my friend’s workstations which mostly run Windows server 2003 and Windows xp sp2. I think it’s important to patch the vulnerability as soon as possible , just don’t let your workstations get hacked just because of this MS08-67 exploit. You can download ms08-067 exploit patch from Microsoft download center. By downloading and installing the ms06-067 patch , hopefully your workstations won’t be easily get compromised anymore.

Click here to read my previous post about ms08-067 exploit code. And please follow this following link to begin downloading your patch based on your operating system (windows xp/2003/vista/etc) :

http://www.microsoft.com/downloads/results.aspx?pocId=&freetext=ms08-067&DisplayLang=en

Related articles :

• Microsoft to deliver a pair of November fixes
• Microsoft to rush out emergency Windows patch
• Microsoft issues security patch for unreleased software