Slashdot Mirror


Unpatched Firefox Flaw May Expose Users

Corrado writes "CNET is reporting on a new Firefox flaw." From the article: "The problem lies in the way Firefox handles Web links that are overly long and contain dashes, security researcher Tom Ferris said in an interview via instant messaging late Thursday. He posted an advisory and a proof of concept to the Full Disclosure security mailing list and to his Security Protocols Web site...The public bug disclosure comes just as Mozilla released the first beta of Firefox 1.5. The final release of the next Firefox update, which includes security enhancements, is due by year's end, according to the Firefox road map."

9 of 390 comments (clear)

  1. Expose users? by jdray · · Score: 4, Funny

    Did anyone else have a sudden concern that using Firefox would cause you to be "pants'ed"?

    --
    The Spoon
    Updated 6/28/2011
    1. Re:Expose users? by .sig · · Score: 5, Funny

      I'm counting on it, I'm passing out copies of firefox to all the women I know....

      --
      -Space for rent
    2. Re:Expose users? by iceborer · · Score: 5, Funny

      Since you're a /. member, I would have thought you'd installed Firefox for your mom and little sister already.

    3. Re:Expose users? by sootman · · Score: 5, Funny
      --
      Dear Slashdot: next time you want to mess with the site, add a rich-text editor for comments.
  2. Patent infringement by confusion · · Score: 4, Funny

    I thought MS had a patent on unpatched browser flaws?!?!?

    Jerry
    http://www.cyvin.org/

  3. Similar Bug by MobileMrX · · Score: 3, Funny
    I saw a similar bug IRL.

    This guy was driving and navigated to a bunch of yellow dashes in succession.

    This method of action caused his car to crash.

    I've only been able to replicate this bug on roads with > 2 cars.

    Anyone experience this?

    /waiting for roads v1.5

  4. Firefox is the fix for Internet Explorer problems. by CyricZ · · Score: 3, Funny

    Indeed. The main update/fix for Internet Explorer-related problems is Firefox. So that should always be the first solution proposed. That in turn directly leads to my proposal: always keep your non-technical friends' Firefox installations up to date.

    --
    Cyric Zndovzny at your service.
  5. Patch available by Frankie70 · · Score: 3, Funny

    You can download a fix here

  6. Re:It should be noted by Delphiki · · Score: 5, Funny
    So if person P is skeptical of claim C about entity E, then it logically follows that P thinks that E "can do no wrong"? That sounds a like a fringe-whacko line of thought to me.

    You don't really want to get into the business of pointing out wackos on slashdot. It's easily a full time job and it doesn't pay.

    --

    Feel free to mod me "-1 - Angry Jerk".