Have an account?
It looks like you're new here. If you want to get involved, click one of these buttons!
Apply for Membership
Who's Online (0)
Looking to introduce yourself? Look no further, and click here! We also have IRC! [irc.evilzone.org #iexploit]
General Security Discussions
12-year-old finds critical Firefox flaw, earns $3,000 bounty
The security researcher who found and reported this critical buffer overflow and memory corruption vulnerability in Mozillaâ€™s Firefox browser is none other than Alex Miller, a 12-year-old boy who
earned a $3,000 bounty
for his discovery.
According to the San Jose Mercury News, Miller (right) was motivated to search for Firefox security holes after Mozilla increased its bug bounty from $500 to $3,000.
The seventh grader, described as a â€œFirefox loyalist,â€ had previously reported a Firefox vulnerability but that one did not qualify for the cash payout.
Alex returned to the computer and his exploration. By Alexâ€™s estimation he spent about 90 minutes each day for about 10 days until he spotted itâ€“a flaw in the memory of the running program.
The vulnerability, which can be exploited to crash a victimâ€™s browser and potentially run arbitrary code on their computer, was patched this week in:
* Firefox 3.6.11
* Firefox 3.5.14
It also affects:
* Mozillaâ€™s Thunderbird 3.1.5
* Thunderbird 3.0.9
* SeaMonkey 2.0.9
That would of been the best day of his short life.
Wow that guy is 3l33t! Good on him
The question is, $3,000 for him or his parents...
It's not a huge amount of money though, nevertheless I wouldn't say no to it.
Yeah the sad thing is that if he sold it in the blackhat world he could have earnt so much more money than that
Nice! I would love to have an extra $3K. lol
Excellent guy! :)
amazing guy :) well done for your work,from next time sell those things on black markets ..
I agree with you xinapse and mandi
Add a Comment