12-year-old finds critical Firefox flaw, earns $3,000 bounty

The security researcher who found and reported this critical buffer overflow and memory corruption vulnerability in Mozilla’s Firefox browser is none other than Alex Miller, a 12-year-old boy who earned a $3,000 bounty for his discovery.

According to the San Jose Mercury News, Miller (right) was motivated to search for Firefox security holes after Mozilla increased its bug bounty from $500 to $3,000.

The seventh grader, described as a “Firefox loyalist,” had previously reported a Firefox vulnerability but that one did not qualify for the cash payout.

Continue reading

Comments

Post a Comment

Popular posts from this blog

KEPONG Gangster甲洞

Image
“ KEPONG ”, a famous local Chinese gang/gangster neighbourhood, is a story about five young men whom are best friends that join a gangster and then faces the reality of gangster life with financial problem, drugs, power and so on, ending up breaking their friendship and bad consequences. From the left: Rayz, Melvin, Hero, Henley & Billy. Although the theme of the film mainly focus on the story of the gangster, however, it still indirectly convey a positive message to the teenage, to highlight to them not to involve in any such activities which might ruin their bright future. The Kepong movie introduce: Director: Teng Bee Casts: Melvin Sia, Henley Hii, Hero Tai and Aunty Lai Meng Genre: Gangsterism, Teenager Release date: 13 September 2012
Read more

Azusa Aida makes her 13th appearance

Image
So what do you do with 21 girls? Hold a Gravure Idol contest that’s what. At Toshimaen Pool, Sankei Sports and One Eight Promotions held their “Visual Queen Photography event in Toshimaen 2010.” 1200 fans were entertained by the girls in their bikinis and other costumes. Azusa Aida made her 13th appearance at the event. She advertised her new DVD that will be released 8/25 and hopes that many people will purchase it. More photo visit; Tokyohive
Read more

Google plugs 'high risk' Chrome browser holes

Image
Google has shipped another Chrome browser update to fix multiple security security vulnerabilities. Some of these security holes can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, and potentially compromise a user’s system, according to this Secunia advisory.Secunia rates this a “highly critical” update. According to this basic documentation, there are a total of 11 vulnerabilities in this patch batch. Google is withholding details on most of the serious vulnerabilities until the majority of Chrome users are fully patches. Some of the flaws affect Linux users only. Here’s what we know: [48225] [51727] (Medium-risk) Possible autofill / autocomplete profile spamming. [48857] (High-risk) Crash with forms. [50428] (Critical) Browser crash with form autofill. Credit to the Chromium development community. Continue reading
Read more