Slashdot Mirror


Vulnerability In Firefox Popup Blocker

cj writes in with news of a vulnerability in Firefox's stock popup blocker discovered by Michal Zalewski. The vulnerability can allow a malicious user to read files from an affected system. The attacker would "need to plant a predictably named file with exploit code on the target system. This sounds hard, but isn't," according to the article.

4 of 100 comments (clear)

  1. Is this the best they can do? by adpsimpson · · Score: -1, Flamebait

    I thought open source software was meant to be playing catchup to proprietory programs, and then we see yet another lame-ass exploit.
    This just shows why open source just isn't ready for the desktop.

    --
    Is crushing a suspect's child's testicles illegal?
    John Yoo: "No, [if] the President thinks he needs to do that."
    1. Re:Is this the best they can do? by bky1701 · · Score: 0, Flamebait

      So you think IE is secure?

      Enjoy your virii.

  2. Is Microsoft hiring? by Anonymous Coward · · Score: -1, Flamebait

    Just asking. It doesn't have to be in the shill department either. I could use a job and the exercise dodging chairs.

  3. Your link is wrong by Anonymous Coward · · Score: -1, Flamebait