Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Vulnerabilities Discovered in Firefox 1.0

Posted by samzenpus on from the protect-yourself-at-all-times dept.

jflint writes "Today, the security firm Secunia has released 8 more security vulnerabilities it has discovered in Mozilla products, including Firefox and Thunderbird. The exploits "could be used by criminals to spoof, or fake, various aspects of a Web site, ranging from its SSL secure site icon to the contents of an inactive tab.""

16 of 406 comments (clear)

  1. first by Anonymous Coward · · Score: -1, Offtopic

    first

  2. Internet Commerce On Its Way Out by jIyajbe · · Score: 0, Offtopic

    Even spoof the SSL icon? This is giving me the willies.

    Prediction: In 10 years, if there is no fundamental fix for these sorts of spoofs, or if the underlying model of the web is not changed, web-based commerce will be all but dead. Consumers won't trust any website with their credit card number, and with no money to be made on the web, the retailers will pull out too.

    'Course, this might be a good thing...

    --
    "Don't blame the log for the fire." --Andrew Ratshin
    1. Re:Internet Commerce On Its Way Out by GlassUser · · Score: 0, Offtopic

      Are you on crack? People don't hesitate to hand their credit cards over to be carbon copied by pimply faced 17 year olds to make purchases at The Gap, why would they worry about SSL not being perfectly secure?

      Because the news tells them daily how scary this big new internet is. They "know" they're much safer with what they've been doing for years.

      --
      funny munging
  3. Re:THANK YOU SLASHDOT!!! by Neil+Blender · · Score: 0, Offtopic

    For some reason the front page of Slashdot fails to render correctly on Mozilla and Firefox for me.

    Someone is surely going to come along and say it's a bug in Firefox, the fix will be in 1.1, blah blah blah. Funny how Slashdot is the only site I have ever seen that renders so poorly as to make it unreadable at times under Firefox and Netscape 7+.

  4. Re:ooh your good by Anonymous Coward · · Score: -1, Offtopic

    I hate cheese.

    My first boyfriend had cheese under his foreskin.

    I liked it, but my mom said it makes you fat.

  5. Re:ooh you're good by Anonymous Coward · · Score: -1, Offtopic

    You may have noticed that, out of my love of the English language, I've corrected my subject-line mistake in grammer.

    In answer to your question: Gruyere.

    I'll have you know, though, if I'm eating Gruyere and one of those GNAA guys gets the first post, I will not be happy. In fact, it may ruin my affinity to the Gruyere, and I might have to switch to another cheese.

    That... would be unfortunate.

  6. Re:Emergency! by deathazre · · Score: -1, Offtopic

    uh... I almost just modded you down for saying that

    --
    Karma: Negative (Mostly affected by dorm trolling)
  7. And in 10 Years... by Belial6 · · Score: 0, Offtopic

    The big old Internet is what they'll have been doing for years.

  8. Re:Emergency! by shutdown+-p+now · · Score: 0, Offtopic

    Uh... not with that sig of yours

  9. Bonus! by cliffiecee · · Score: 0, Offtopic

    I just upgraded, and suddenly I have mod points!

  10. patch by minus_273 · · Score: 0, Offtopic

    is available here

    --
    The war with islam is a war on the beast
    The war on terror is a war for peace
  11. old news by Anonymous Coward · · Score: -1, Offtopic

    isnt this old news?

    (yet another flame)

  12. Re:patch here by ari_j · · Score: 0, Offtopic

    Meta-moderation is just a horrible idea as it is. Since you probably can't metamoderate yourself, and since metamoderation is easier to get access to than mod points, it follows that the people doing the metamoderating are the people with the shittiest quality of input the userbase has to offer.

  13. Re:patch here by shaitand · · Score: 0, Offtopic

    meta moderation is easier to get access to than mod points but meta-mods are still elite compared to the average slashdotter.

    The biggest problem is that unless your every post is modded into the ground then anyone who posts a lot will have excellent karma and eventually get to meta-mod AND moderate. Hell mods are chosen at random, at least meta-mods are chosen based on criteria that indicates they are above par slashdotters!

  14. Re:First by Anonymous Coward · · Score: -1, Offtopic

    Hate goths? - You will now!

  15. connections by Anonymous Coward · · Score: -1, Offtopic
    this page seems to indicate that mr flint is a part of mr scrivens operation.

    now, lets see what relation mr scrivens might have to secunia, shall we? hmmm...
    "For my money (not that I'm donating any of it), Paul Scrivens has found probably the only realistic way of making a living out of blogging. Start a handful of blogs, all dedicated to a narrow focus of interest, and stick a bunch of Google ads on them. They bring in a targeted audience, make a little money - perhaps you get some medium-size sponsors sniffing around for a homepage spot; you start a few more blogs, and pretty soon you're making a living wage."
    this from www.thewatchmakerproject.com

    substitute 'get an article on slashdot' for 'stick a bunch of Google ads on them' and i think you've got it. i'm not going to waste any more of my time, but it certainly seems as if there are a lot of people in this world who spend lots of time trying to figure out how to get the most publicity for free, and slashdot certainly seems to be one of the most highly targeted sites. what was that third step again?