Slashdot Mirror

← Back to Stories (view on slashdot.org)

Major Browsers Have JS Pop-Up Flaw

Posted by Zonk on from the security-flaws-build-character dept.

An anonymous reader writes "Secunia is warning that several popular browsers contain a vulnerability that could allow a phishing attack. 'The problem is that JavaScript dialog boxes do not display or include their origin, which allows a new window to open -- for example, a prompt dialog box -- which appears to be from a trusted site,' Secunia said. The browsers include the latest versions of IE, IE for Mac, Safari, iCab, Mozilla, Mozilla Firefox and Camino. Opera 7 and 8 are also affected but not 8.01."

1 of 397 comments (clear)

  1. Re:Let's see... by wallykeyster · · Score: 1, Troll
    How long takes to fix the free browsers...

    Firefox has been working on it and Opera fixed it. Microsoft says they aren't going to fix it since it is a "feature". Even better, Microsoft's answer is for users to install XP SP2 and make sure the firewall is enabled. Beautiful...