Tuesday, August 07, 2007

Mozilla Foundation Releases Browser Fuzzing Tool

Via heise Security Online.

The Mozilla Foundation has released three tools that enable developers and users to test their browsers for vulnerabilities that can be exploited while browsing. They are specifically aimed at assisting those users who regularly download and test the nightly builds - the latest (possible unstable) development versions - in searching for bugs.

The Mozilla Foundation is hoping to achieve a better level of security for their browser through feedback from the Mozilla community. The tools were originally conceived for Firefox and Mozilla only. However the developer, Jesse Rudermann, also wants to make them available to other browser producers.

The jsparsefuzz.js fuzzing tool attempts to crash the browser by generating buggy JavaScript code. This should allow potential security vulnerabilities to be detected at an early stage.

More here.


Post a Comment

<< Home