|
Critical flaws found in Firefox
|
View this Thread in Original format
| erdega |
http://news.bbc.co.uk/2/hi/technology/4532127.stm
| quote: | The Mozilla Foundation has said it is "working aggressively" to fix two flaws in its open source Firefox browser.
The vulnerabilities, reported on Saturday, were identified as "very critical", but no cases had been reported of them being exploited.
Several security firms identified the flaws which could let websites run malicious code on a person's computer.
Mozilla has responded by changing its update service and says people should temporarily turn off JavaScript code.
Manual downloads
The first flaw reported fools the browser into thinking software is being installed by a legitimate, or safe, website.
The second flaw happens when the software installation trigger does not properly check icon web addresses which contain JavaScript code.
A hacker could potentially take advantage of the security flaws to secretly launch malicious code or programs.
Mozilla advised people to download add-ons to its software manually from the Foundation's site.
Danish security firm Secunia said called the flaws "extremely critical" because cookie and history information could be used to get access to personal information or gain access to sites previously visited.
The Mozilla Foundation, which developed the browser, said it was working hard to provide a comprehensive and more permanent fix for the problems.
Main competition
Last week, Firefox celebrated its 50 millionth download since its official launch in November.
Firefox is Microsoft Internet Explorer's (IE) main rival in the browser market. Many like it because it is easily customised, and others say it has fewer security flaws than IE.
Being open source means people can adapt the software's core code to create innovative features, such as add-ons, RSS news feed readers, or extensions to the program.
The Mozilla Foundation was set up by former browser maker Netscape in 1998. Netscape dominated the browser market in the early 1990s.
Microsoft releases its next-generation IE7 later this year which promises to be more secure
|
|
|
|
| TweeK |
| quote: | | Microsoft releases its next-generation IE7 later this year which promises to be more secure |
I'd like to see that:tongue2 |
|
|
| jonze234 |
| quote: | Originally posted by TweeK
I'd like to see that:tongue2 |
which part is funnier...them saying that it will be out later this year or that it will be more secure? |
|
|
| idoru |
| quote: | Originally posted by jonze234
which part is funnier...them saying that it will be out later this year or that it will be more secure? |
:stongue: :stongue: :stongue: |
|
|
| verndogs |
| quote: | Originally posted by jonze234
which part is funnier...them saying that it will be out later this year or that it will be more secure? |
tough call :tongue2 :stongue: |
|
|
| Boomer187 |
| quote: | Originally posted by jonze234
which part is funnier...them saying that it will be out later this year or that it will be more secure? |
i don't think it is an either or question... :wtf: |
|
|
| SID133 |
| quote: | | Microsoft releases its next-generation IE7 later this year which promises to be more secure |
thats cute they're still trying |
|
|
| LeopoldStotch |
it seems microsoft wants to play the role of the base-stealing ballplayer trying to steal home from third while the pitcher is on his wind-up ..
the pitcher winds up .. microsoft makes the run for home plate .. he slides .. and is awaiting for the umpire to yell out the oh so critical word .. "SAFE!" ......
:conf: :wtf:
but anyways .. back to topic .. microsoft seems to say this all the time .. the one bad thing they are trying to do is push all their new products at once .. longhorn, IE7, xbox 360, and new digital media player (that's rumors i heard, since they bought out some media company in massachusetts) .. but it's no contest which one we are looking forward the most to ... me, it's the xbox .. |
|
|
|
|
