• Firefox & IE Filesystem Bug Issue in Win 7 & 8.1

    Home » Forums » Cyber Security Information and Advisories » Code Red – Security/Privacy advisories » Firefox & IE Filesystem Bug Issue in Win 7 & 8.1

    Tags:

    Author
    Topic
    Kirsty
    Manager
    May 26, 2017 at 11:07 pm #118292

    Filesystem Bug Hangs or Crashes Windows 7 and Windows 8.1

    By Catalin Cimpanu | May 26, 2017

     
    A bug in Microsoft’s NTFS file system technology allows pranksters to hang or crash computers running Windows Vista, Windows 7, and Windows 8.1 just by tricking the user to access a malformed path for a non-existent file.

    The issue, which doesn’t affect Windows 10, can be exploited when the user tries to open a non-existent file with a malformed path.

    Bug can be exploited via Firefox and IE, but not Chrome

    According to users that have tested the bug and commented on Anatolymik’s blog post, Chrome will refuse to load images with malformed paths, such as the $MFT exploit.

    Nonetheless, Bleeping Computer confirmed that the $MFT bug causes a Windows 7 installation to hang via Internet Explorer and Firefox.

     
    Read the full article on bleepingcomputer.com

     
    According to securitytracker.com, no solution was available as at May 26, 2017

    3 users thanked author for this post.
    SueW, MrBrian, HiFlyer
    Reply | Quote
    Viewing 0 reply threads
    Author
    Replies
    • Ascaris
      AskWoody MVP
      May 27, 2017 at 5:10 pm #118376

      I am more interested in the idea that Firefox (or any other browser) would pass the file:/// request on to the local system without any question.  If it does it from user input into the URL bar, that’s one thing, but if it does it in the background, as the article says, that’s a whole ‘nother ball of wax.

      Going to need more information about this one.

      …Aaand the source article is in Russian, and it’s too big for Google Translate.  Ok then!

      …Aaand Bing Translate won’t do a HTTPS: page, and deleting the S didn’t help.  Sweet.

      Dell XPS 13/9310, i5-1135G7/16GB, KDE Neon 6.2
      XPG Xenia 15, i7-9750H/32GB & GTX1660ti, Kubuntu 24.04
      Acer Swift Go 14, i5-1335U/16GB, Kubuntu 24.04 (and Win 11)

      Reply | Quote
    Viewing 0 reply threads
    Reply To: Firefox & IE Filesystem Bug Issue in Win 7 & 8.1

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    May 2025
    S M T W T F S
     123
    45678910
    11121314151617
    18192021222324
    25262728293031

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.