A look at recent FireFox 3 vulnerabliities...Heads up


True to form, Billy Rios promised a more in depth look at the MSFA2008-35 vulnerability which is another protocol handler flaw in Firefox 3. As previously reported here, this was another protocol handler flaw that led to arbitrary remote command execution, and is especially dangerous since it can be deployed widely through the use of a cross-site scripting attack vector. Note, Firefox3 no longer registers the Gopher protocol handler, which is a great security decision.

Site Link - ZDNet

Picture of A look at recent FireFox 3 vulnerabliities...Heads up
sort by: active | newest | oldest
1-10 of 20Next »
Labot20019 years ago
Can you rephrase that into the vernacular, please?
Goodhart (author)  Labot20019 years ago
The flaw allows one to pass a URL to redirect to another site then the one called.
So, for example, one could type in www.google.com and wind up on www.winfreestuff.com?
Goodhart (author)  Labot20019 years ago
Or they may be able to misdirect you from www.myfavorite_place.com to www.porn-n-spamUnlimited.com
www.winfreestuff.com was meant to sound like a spam site ;-)
Goodhart (author)  Labot20019 years ago
Oh ok sorry, I guess I was thinking a little worse than "just spam". Some of the other sites are relentless in the popups and garbage, when you get redirected there...*sigh*
I got a simple fix for that, apply hand to power cord then yank hard.... <> works every time... I know what you mean thousands of windows that just open on there own it does get annoying after a few seconds....
Goodhart (author)  Big Bwana9 years ago
Nothing is worse then it happening at work.......oh that is frustrating.
Goodhart (author)  Goodhart9 years ago
I have a few programs that "end all active" windows immediately, as well as the option to block all internet activity, with a click on the firewall :-) It is easier on the hardware too :-)
Got any links to good firewall programs for download? Free would be nice, even if they aren't the best, long as I can shut down the vulnerable ports.
1-10 of 20Next »