Serious Vulnerability In Firefox 2.0.0.12

← Back to Stories (view on slashdot.org)

Serious Vulnerability In Firefox 2.0.0.12

Posted by kdawson on Saturday February 9, 2008 @12:20PM from the that-was-quick dept.

Oh, Not Now writes "Mozilla Firefox 2.0.0.12, mere hours old, is vulnerable by default to a directory traversal trick, via the view-source mechanism. Although mitigated by the NoScript plug-in, this is quite a serious bug — the default installation is vulnerable from the get-go."

10 of 355 comments (clear)

Exactly! That's why I use Internet Exploder by Anonymous Coward · 2008-02-09 12:43 · Score: 1, Funny

I use "Internet Explorer version 7.0" from a company called "Microsoft Corporation". I would recommend trying it out.
It seems to render most web pages accurately and is moderately fast. Yes, I know, it IS slower and uses WAY more memory than the two other dominant browsers (Firefox and Opera), but the company does seem to have a lot of programmers working for it, has been in business for a while, and seems to have some staying power. The company's CEO, a man by the name of "Bill Gates" seems to have his wits about him and seems to have invented a good thing here. I urge people to try it out. The only thing is, that the browser only seems to be available for a small number of available Operating Systems.... namely "Microsoft Windows" and also a small number of "Macintosh OS Ten"... and doesn't seem to be available for the mainline Linux OS, but perhaps they are working on it.

TDz.
Re:Fixed is hours! by Anonymous Coward · 2008-02-09 12:52 · Score: 2, Funny

>Microsoft products are getting better. Deal with it. Quit living in the past.

So are realplayer's products, but you don't see anyone telling anyone to install them.
Re:Your 'Ron Paul Facts' by Anonymous Coward · 2008-02-09 13:34 · Score: 1, Funny

dude, you just blew my mind.
Maybe Ron Paul is the one to help wipe out browser vulnerabilities!
Re:saved passwords by Nazlfrag · 2008-02-09 13:37 · Score: 3, Funny

There's this thing called carbon-based memory I use from time to time. Efficient, portable, unfortunately it is easily broken by Johnny Walker and co.
Re:NoScript by milsoRgen · 2008-02-09 13:54 · Score: 4, Funny

On a similar note, I would not mind integration of Adblock Plus. Shhhhh! Once sites learn more and more people are blocking ads, they are going to move on to an even more insidious manner to deliver screaming, moving obnoxious hobbknobbery to our computers...

--
I'm sick of following my dreams. I'm just going to ask where they're goin' and hook up with 'em later.
Re:How come? by jamesh · 2008-02-09 15:03 · Score: 2, Funny

If we could tag posts, yours would be tagged 'youmustbenewhere'.
As a MS executive who has nothing better to do... by Anonymous Coward · 2008-02-09 16:13 · Score: 2, Funny

... I'd like to say that that is a fantastic idea, and I'll ensure that we acquire Mozilla ASAP.

Enjoy being beaten up by your fellow /.ers.
Whew! by loopiv · 2008-02-09 16:31 · Score: 2, Funny

Thank god I use Internet Explorer.
Amazing coincidence by GlobalEcho · 2008-02-09 17:35 · Score: 4, Funny

The browser can present to me a list of script functions and fragments, each with a "allow", "deny", or "remap" option. What an amazing coincidence! My grandmother, my boss and my brother's girlfriend were all wishing out loud for that very feature just yesterday! We'll all be secure in no time!
Re:* Stops download of newest Firefox * by sticks_us · 2008-02-10 00:25 · Score: 2, Funny

That does it, I'm switching to w3m

(returns ten minutes later)

Ahh...how relaxing...

--
"Beware of bugs in the above code; I have only proved it correct, not tried it." -- Donald Knuth