Slashdot Mirror

← Back to Stories (view on slashdot.org)

Major Browsers Have JS Pop-Up Flaw

Posted by Zonk on Friday June 24, 2005 @02:02AM from the security-flaws-build-character dept.

An anonymous reader writes "Secunia is warning that several popular browsers contain a vulnerability that could allow a phishing attack. 'The problem is that JavaScript dialog boxes do not display or include their origin, which allows a new window to open -- for example, a prompt dialog box -- which appears to be from a trusted site,' Secunia said. The browsers include the latest versions of IE, IE for Mac, Safari, iCab, Mozilla, Mozilla Firefox and Camino. Opera 7 and 8 are also affected but not 8.01."

4 of 397 comments (clear)

Min score:

Reason:

Sort:

stop developing with JavaScript by wirehead78 · 2005-06-24 02:09 · Score: 0, Flamebait

People should stop developing with JavaScript. How many of us have it disabled in our browsers? It's nothing but trouble.
Safari by callipygian-showsyst · 2005-06-24 02:10 · Score: 0, Flamebait

Safari
But I thought that the super-advanced OS and Objective-C programming paradigm of the Macintosh prevented any and all security problems!

--
Best Buy can have you arrested
1. Re:Safari by callipygian-showsyst · 2005-06-24 03:07 · Score: 0, Flamebait
  
  Please don't confront Mac zealots with facts. I find it to be an extremely cruel and unnecessary practice.
  You're right. So far, the responses have labeled me: 1) a Java programmer, and 2) Some "Kid"
  
  I'm hoping that Apple's switch to Intel will send all of their crazy zealot fanbase away. That would actually help the company quite a bit!
  
  --
  Best Buy can have you arrested
iCab?!?! by reiggin · 2005-06-24 02:11 · Score: 0, Flamebait

Seriously... who still uses this browser? I didn't even know it was still in development.